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Welcome to the last AUUGN for the Year 2000, 
the first one with me (Con Zymaris) as editor. 



and 



I've accepted the stewardship of this long-running 
Journal from Gunther Feuerelsen, who has been edi- 
tor of AUUGN for over four years. Please join me in 
thanking Gunther for all his efforts. My putting to- 
gether even one of these issues has definitely enlight- 
ened me as to the work- level required, highlighting 
Gunther's dedication even more. 

Now, onto what we have planned for you in this, and 
in future issues. 

We've drawn upon various technical Information 
sources for content that we think will be of benefit to 
Unix and open systems developers, systems adminis- 
trators, managers and related professionals. 

We mix big-vendor Unix platforms, as well as Open 
Source OSes and tools. 

And finally, we hope we do what all good user-group 
publications are meant to do, let you know what is 
happening with AUUG, your user group. 

If we've been edifying, entertaining and enlightening in 
any way, tough, that was intentional :-) If we've 
missed the mark by way of content or style, then it's 
in your hands to help rectify this; Let us know. 



Cheers, 



Con 



Thanks to our Sponsors: 



m 



> 
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President's Column 

Etavid Purdue 

David.Purdue @auug.org.au 

connect v. (often + to, with) join; be 
Joined; associate mentally or practically; 
(+ ivith) (of train etc.) arrive in time for 
passengers to transfer to another; put 
into communication with by telephone; 
(usu. in passive; +with) associate with 
(others) in relationships etc.: coUoq. hit or 
strike effectively. 
- The Australian Little Oxford Dictionary 



I am a very well connected person. You can reach me 
at almost any time, day or night, from pretty much 
anywhere in the world. I have a mobile phone, but I 
am also mostly near one land line or another. 1 don't 
have a pager, but my ptione has a memo service and 
SMS. I have about a dozen email addresses. I even 
have a camera set up on nqr desk for rudimentary 
video conferencing. 

Wliich begs the question - why am I spending so 
much time on aeroplanes? 

It seems that we as humans have a need to con- 
nect physically with other people. Tliere are so 
many forms of communication over a distance 
these days, but there seems to be many elements 
of human roTtiinuiiicat ion (hat are not captured 
by these communications. Serious negotiations 
are still carried out face-to-face. 

A similar observation applies to gathering new 
knowledge. We have at our disposal books, web 
sites, videos, computer aided instruction, but 
still the most elfective way to learn something is 
to have someone explain it to you. This is 



reflected by the decision of some academics at a 
major Australian university not to place learning 
materials or recordings of the lectures for their 
courses on the web. They found that students 
were using this as an excuse not to attend lec- 
tures, and thus were not learning as effectively. 

This Is partly what Is driving the AUUG Man- 
agement Committee to organise more events 
where people will come and explain things to 
you. 

Ehiring November AUUG oiiganlsed the Secu- 
rity Symposium and the Australian Open Source 
Symposium. Both these events are in their sec- 
ond year, and were both very successful, if not as 
well attended as we would like. 

We think that the one day symposium is a 
good way for AUUG to deliver value back to our 
members, and we will be increasing the number 
of symposia we run so that we can cover more 
topics and present events in more locations. We 
would be keen to hear from you if you have an 
idea for a symposium topic, and especially if you 
would like to speak at or help organise one. 

To ensure you hear about AUUG organised 
events, subscribe to auug-announce. To ensure 
that AUUG has your correct email address and 
that you are on the list, please send an email to 
Liz Carroll at <busmgr@auug.oig.au>. 
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Tellurian Pty Ltd 



Come to us if you need seriously copobie people to hielp with your com- 
puter systems. We're very good at what we do. 

• Unix, Macintosh and Windows experts 

• Legacy system re-engineering and integration 

• System management and support 

• Internet access 

Our two current major projects: 

• Support and development of an integrated environment covering ap- 
plications running on IBM3090, DEC Alpha, SCO Unix and Nortel switches. 
Just imagine the cost benefits of supporting over 500 concurrent users on 
four little 486 and Pentium PCs. 

• From the ground-up implementation of MFC and Windows API on Apple 
Macintosh. We've got our client's Windows MFC application running, 
bug-for-bug, on Apple Macintosh. 



Tellurian Pty Ltd 
272 Prospect Road 
Prospect SA 5082 



(08) 8408 9600 
www.tellurian.com.au 
sales@tellurian.com.au 




Linux, UntM 
and Windows 




Conaufting, Training 
and DevelopntMt 



Cybersource is a professional services consultancy 
specializing in the areas of Unix, Linux, and 
Windows. We provide networlt consulting, staff 
training, and application development services and 
have over 10 years experience in the industry. 

So if your organization has a need for systems and 
network administration, security and auditing, or 
web based application development, you know 
who to call. 



Web: www.cyber.com.au 
Mail: info@cybmr.com.au 



Phorte: *6t 3 9642 5997 
Fa*: *61 3 9642 5998 
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Public Notices 



Clunies Ross National Science & Technology 
Award 2001 

Date: 28 March 2001 

Event: Clunies Ross National Science & Technology 

Award 2001 

Award recipients will be pubUcty honoured at a for- 
mal ceremoiqr and dinner to be held at Hotel Sofitel. 
Melbourne on Wednesday 28 March 

2001. 

This annual Award has now honoured 52 special 
Australians who have made an outstanding contri- 
bution to the application o( science and technology 
for the economic, social or environmental benefit of 
Australia. 

Contact Details: Mary Bolger on (03) 9854 6266 
(Email: icr@cmet.com.au) or visit our web site at 
http://www.cluniestoss.oig.au 



Upcoming Conferences 

December 3 - December 5. 2000. 

Wireless DevCon 2000 

San Jose Doubletree Hotel. San Jose. CA. 

December 3 December 8, 2000. 
USA 2000 
New Orleans. LA. 

January 30 ~ February 2. 200 i. 
LinuxWorld Conference & Expo 
New York. NY 

March 5 March 8. 200 i 

The Nintti International ^rthom Conference 

Long Beach, California 
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My Home Network 
(November 2000) 

Author: Frank Crawford 
<frank@crawford.eniu.id.au> 

Its time for another AUUGN, but this time there are 
a number of differences. Firstly, we have a new edi- 
tor for AUUGN, Con Zymaris, and I'd like to welcome 
him to this demanding job. Con, have fun with it. 
I'd also like to thank our previous editor. Gunther 
Feuereisen, for his efforts over the years, well done. 
However, changes in AUUGN are not the only thing I 
want to mention. I have changed Jobs, moving from 
ANSTO, to a new company. ac3. Still doing the 
same type of work, managing systems, but at an or- 
ganisation dedicated to high performance comput- 
ing. 

One reason I mention the change in Jobs Is that 
many of the items within my home network have 
been reimplemented at ac3 as I've helped to build up 
an entire computer infrastructure from scratch. 
Again, this shows that the requirements for an or- 
ganisations network and a home network are not re- 
ally that different. 

One of the other similarities between such systems 
is how it is managed, in particular you need to fol 
low the three rules of system administration: "auto- 
mate, automate, automate ". :-) A big area for this 
is keeping software up-to date, in particular down- 
loading updates for later (or immediate) installation. 

Despite the prevalence of the web and the assump- 
tion that it can be used for everything, most installa- 
tion programs, particularly for GUI based systems, 
assume that a user is available to launch the pro- 
cess. As well, updates are getting bigger and bigger, 
and more and more frequent. All of which means 
that you need either a lot of time to sit at your com- 
puter or need a way to make the whole process non- 
interactive, i.e. automate it. 

The first step in this is to realise that while down- 
loads are getting bigger, the protocol used for it is 
amongst the oldest available on the Internet, FTP. 
This has been supplemented by HTTP download ca- 
pabilities, but in most cases you can access the files 
via either method. 

Given a server running continuously, with sufficient 
disk space, it is simple to set up an FTP mirror. 
While there are a few programs around to do it, the 
one I use is called 'mirror'. It is written entirely in 
Perl and is simple to install and use. By itself it 
downloads files recursively from a source directory, 
but Include a script to run multiple downloads from 
different sites at once. 

Aside from Just downloading files, it deletes files that 
have been removed, creates new directories, ex- 
cludes files matching certain patterns and ultimately 
sends out mail when updates occur. In fact the 
comments in the documentation says: 



Mirror Is a package written in Perl that uses the FTP 
protocol to duplicate a directory hierarchy between 
the machine it Is run on and a remote host. It avoids 
copying files unnecessarily by comparing the file 
time-stamps and file sizes before transferring. 
Amongst other things, it can optionally rename, 
compress, gzlp, and split files. 

Mirror was written by Lee McLx)ughIin 
<lmjm@icparc.lc.ac.uk> for use by archive malntain- 
ers but can be used by anyone wanting to transfer a 
lot of files via FTP. Although originally only available 
on Un*x with version 2.9 mirror will also run on 
Wlnd*ws 95 and Windows NT. 

The latest version of mirror can always be found at 
either: 

ftp://sunsite.org.uk/packages/mirror/mirror.tar.gz 
ftp://sunsitc.org.uk/packages/mirror/mlrror.zlp 

It is also distributed as part of the Red Hat Power- 
tools, with version 2.9 on the RedHat 6.2 Powertools. 

'Mirror' is basically controlled by two files, a global 
configuration file, and then Individual ones for each 
package. The global file is usually 
'/etc/mirror. defaults', and generally contains op- 
tions that relate to all downloads. What I have in 
mine is: 

# This is the default mirror settings used by my 
site : 

ft crawford.emu.id.au 
tt 

S Frank Crawford <f ranki8crawford.emu. id.au> 

tt You should be able to use this at other sites. 
You should only have 

# to change bits that reference my site. 

package =de faults 

# The LOCAL hostname - if not the same as 
' hostname ' 

<t (I advertise the name 
crawford.emu.id.au but the machine is 

# really bits.crawford.emu.id.au.) 
hostname=crawf ord . emu . id . au 

tt Keep all localdirs relative to here 
local_dir= /home/mirror /pub/ 

# The local_dir must exist FIRST 
#local_dir_check=true 

remote_password=root®crawf ord . emu . id . au 
mail_to=root(acrawf ord . emu . id . au 

# Don't mirror file modes. Set all 
dirs/files to these 

dir_mode=0755 
f ile_mode=0444 

# By defaults files are owned by 

root . zero 

user=0 
groups 0 

# # Keep a log file in each updated direc- 
tory 

# update log=. mirror 
updateJT.og= 

# Don't overwrite my mirror log with the 
remote one . 

# Don't pull back any of their mirror 
temporary files. 

# nor any FSP or gopher files... 

exclude pat t= ( * | /) (\ .mirror$ | \ .mirror\ . log I core- 
$ I \ . capJA . in\ . . *\ . $ I MIRR0R\ . LOG J # . *# | \ . FSP | \ . ca- 
che I \ . zipped I \ . notar | \ .message | lost\ + f ound/ | Net- 
work Trash Folder) |suky.mpe?g 

# Do not to compress anything 
compress_pat t = 
compress_prog=gzip 

S Don't compress information files, files 
that don't benifit from 
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# being compressed, files that toll ftpd, 
gopher, wais... to do things, 

# the sources for compression programs... 

# (Note this is the only regexp that is 
case insensitive.) 

# z matches coinpress/pack/gzip, gz for 
gzip. (built into perl) 

# taz/tgz is compressed or gzipped tar 

files 

# arc, ar j , Izh, zip and zoo are pc 
and/or amiga archives . 

# sea are mac archives . 

# vms used -z Instead o£ .z. stvqpid vms. 

# shk Is multimedia? used on apple2s. 

# rpm and deb are package formats used on 
RedHat and Debian Linux 

compress_excl+ | - 
z (\d+) ?$| \ .tgz I tgzl \ . tar\ . Z | \ . tar\ . gz | \ . taz$ | \- 
. arc$ I \ . zip$ I \ .Tzh$ | \ . zoo$ | \ . exe$ | \ . lha$ | \ . zom$- 
I \ . gif S I \ . jpeg$ I \ . jpg$ | \ . mpeg$ I \ . auS | \ . shk$ | rpm- 
S I deb$ read. *[ne index I info 1 f aq gzip compress 1 ( ^- 
|/)\.\.?$ 

# Don't delete own mirror log, .notar or 
.cache files (incl in subdirs) 

# delete_excla ( ' | / ) \ . (mirror | notar | cache) $ 

# Ignore any local readme and .mirror 

files 

local_ignore=README . doc . ic | ( | / ) \ . (mirror | notar- 
)$ ~ 

# Automatically delete local copies of 
files that the 

# remote site has zapped 
do_deletes=true 
max_delete_f iles=50% 
max de let e_di rs«SO% 
timeout =300 

#failed_gets_excl=\:\ Permission de- 

nied\.$ ~ ~ 



A couple of important bits, most lines are of the form 
"<key\vord>=<value>" to set a value or else 
"<kej^'ord>+<value>" to append additional items to 
an existing item. Values either consist of a simple 
entiy or a regular expression used for various pat- 
tern matching. 

To mirror a site you will need to set up a configura- 
tion for the download. The format of this file is simi- 
lar to the default configuration file, but with Item 
specific to that host. For example, my file to down- 
load Red Hat and Kernel updates is called 
"flp.aamet.edu.au'' and contains: 



package=redhat -updates- 6 . 2 

comment-RedHat 6.2 Updates 
site=ftp. aarnet . edu.au 

tt where to steurt pulling files back from 
remote_di r=/pub/redhat/updates/6 . 2 

# where to put the files on your machine 
local dir+RedHat/updates/6 .2 

# exclude some items 
exclude_patt-«' | spare | mips | alplia | SRPMS 

package>lintix-kernel -2 . 2 

commentsLinux 2 . 2 Kernel 
8ite=f tp . aarnet . edu . au 

# where to start pulling files back from 

remote_dlr=/pub/l inux/kemel/v2 .2 

# where to put the files on your machine 

local dir+Kernel-2 .2 

# exclude some items 

exclude_patt+|2\.2\. t0-9l \ . 1 2\ .2\ . 1 [0- 



This will mirror all the RedHat 6.2 update directory, 
and all kernel updates afler 2.2. 14. 

Once these files are setup, you can mirror the sys- 
tem by running "mirror. pi ftp.aarnet.edu.au', or Just 
to test what it will do, run 'mirror.pl -n 
ftp.aamet.edu.au'. This will perform two separate 
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downloads, one after the other, mailing output to the 
address given by "mlrror.to" keyword. 

To run Just this mirror regularly, all you need to do 
Is add a line to cron of the form: 

05 23 * • • root /usr/bin/mirror.pl 
/home/mirror /packages/ftp . aarnet . edu . au 

and then pick up the updated files in the directory 
specified by "local_dir", which is constructed from 
"/home/mlrror/pub" in '/etc/mirror.defaults' and 
either "RedHat/updates/6.2" or "Kerael-2,2" de- 
pending on which package Is running. 

One point is that it is better to run any mirror as a 
separate cron Job, as it may often take a long time 

(which is why you arc running it this way after all). 
Of course, you may want to run a number in paral- 
lel, but ratlier tlian running it multiple times, the 
package also supplies another Perl script u^ch will 
attempt to do some simple load balancing. 

This script is called mm.pl' (for "mirror-master") and 
takes a configuration file (called 'nrniln*) of the form: 



# How many mirrors to run at the same time. 

# Over a 56K modem - what do you expect? 

max=4 

home= /home/mirror 

cmdin=/usr/bin/pkgs_to_mmln.pl packages/* 

which runs up to four jobs at once, one for each of 
the separate files listed in the [lackaUis' diretloiy. 
This is then controlled by a line in your crontab of 
the form: 

05 23 * * * root /usr/bin/mm.pl 
/home /mi rror /mml n 

lliere are a t ()U[)le of little Liotcha's \'\v tnimd here. 
The biggest is tliat tlie default mirror command in- 
voked by 'mm.pl' is './mirror', i.e. It is expected to be 

in "home" dircctor\'. Tliis can be changed by a com- 
mand in the ininin' tile, but 1 toiuul it simpler to put 
in a symbolic link to the real mirror program (due to 
all the extra arguments 1 had to add to the 'mirror' 
command). 

A second point to note is that 'mm.pl' reluses to try 
a package again, if it lias been run recently, usually 
within the last 12 hours. This Is controlled by the 
file 'mm.status' generated by 'mm.pl*. 

Finally, while 'mirror.pl" deletes files, it refuses to de- 
lete them If It Is more than 50% of the files In a di- 
rectory. This is controlled by the " max delete files" 
and "'raax_delete_dirs" variables In 

'/etc/mlm>r.de£aults* file. 

Of course, these days you also need to handle web 
sites that don't know anything about FTP. Tliere are 
two different packages that can help you here, 'wget' 
or 'curl'. I'm not f^oliii; to go into them here, rather 
I'll leave it to you, the reader as an exercise. Please 
let me know what you discover, and I'll Include it in 
my next column. 



December 20<X) 
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On that note 111 leave olT. hut [)k'asc feel free to drop 
me a note about what you are doing. 1 am wonder- 
ing if airyone finds any use In this ocdumn. or even 
has anyttilng(^ their own to offer. Let me know. 
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Systems Engineer 

Biotechnology Company - Salary Neg. 

Expanding Biotechnology company based at Sydney suburb of Ntli Ryde requires 
an experienced administrator to lead their small systems administration and sup- 
port team. Both hands on and Supervisory experience necessary as you will en- 
sure that c50 user network is adequately supported. You will also design and 
implement solutions for different user groups. Consequently good verbal and writ- 
ten communication skills are necessary. Your technical experience should com- 
prise the following: 

'systems admin, experience with NT, NT servers. Unix and Linux. 

'knowledgable re. high-end / enterprise hardware systems 

'managing & building TCP /IP networks. Firewalls, DMZ, Apache web servers, 
network topology, sub-networking and virtual hosting. 

'networking protocols such as LDAP, NIS+, etc. 

'Samba & NT networking 

'NFS, NIS and communications between various forms of Unices. 
'DNS servers & internet domains 
'mail routing under Linux 

'setup & management of dialin servers & communications via Frame-relay, ISDN 
& ADSL. 

If you are interested in establishing a Managerial career with a company commit- 
ted to maintaining it's cutting edge IT environment , please E-mail your CV to An- 
gela Kerley or Mike Steele at: 
topjobs@carterandstone.com.au or Ph (02) 9955 5477 



CARTER 

STCOISIF 



\ 



For more information please contact Angela Kerley or Mike Steele on 
Ph: (02) 9955 5477 &#149: Fax: (02) 9955 5898 
Email: Please click the "Apply Now" button below 
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canything to declare? 

You decide who to let into your network. 

But do you know whot they're carrying ? 




Controlling vinses on the dedrtop is not enou^ onytnore. Now you need to worry about 
malicious code, email ottac^nent bonte, qxmers and URLs thrt ere productivity sirks and 
even potential lidjility brwts to yoir corpcny. 

Tbofs why Jraxl Micro provides Intff^corx a VirtsyitaU thot inspects and filters irtxxnd aid 
outtxxjnd SMTP. HTTP and FTP traffic ri^ at the firewall end email server. 
Ptrtners such as Check Point Compact Hewlett-Podord, Lotus, Lucent Technologies and Sin 
MicrosysterB hove all chose Trend Micro to be a port of their security solution offerings: 
For firther irfcmition call (02) 8876 5678 or emoil salesotrendmcmconiau 



\ 
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RECENT AWARDS 



IffOWORLD PRbOUCt OF M YEAR 1' 




^^">1> NETWORK CO^*UTl^«i roiTORS CHOIU, , 
'n/^ network magazm rRoooa of Ti* year 1999 
PC MAGAZINE tDITOR'S Of)I(F 
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TREND. 

MICRO 



yni/r Intem pf VirinVNfall 
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TIRED OF PAYING TOP DOLLAR FOR 
HOST CONNECTIVITY? 



Need to get your licensing in order? 



A complete professional connectivity suite for as little as 
$19* per copy enterprise volume licensing 

('conditions apply] 




Introducing SuperTCP Suite (from Frontier Technology) 
Full function connectivity at shareware prices!!! 

SuperTCP Suite allows users lo access Mainframe, AS/400 and UNIX systems seamlessly from any 
windows desktop. 

SuperTCP's 55 plus applications provides access to ALL tiost systems, mount and serve UNIX tiles, 
browse the internet, email anyone on ttne internet or intranet, run UNIX applications from any 
desktop, and IVIUCH more. 

Ttiis hiigti end application suite olso provides lighifning fast data queries and file transfers, ttie 
most reliable host connections, and the most comprehensive set of management tools. All of this 
means less training time, simplified network operations and lower ongoing support costs. 

SupeiTCP Suite includes: 

• XWIndows 

• NFS 

• TCP Kernel for DOS and 1 6 bit Windows 

• TCP/IP Applications 

• Advanced Terminal Emulation Features (optional) 



For further Information contact us at: 
I I www.hippocorp.com.au 

^^SSM sale$@hippocorp.com.au 
iHri^-.i Phone:{02) 9876-4658 
fhlppo I Fax:(02) 9876-8599 
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Installing FreeBSD for 
1386 

Author: Jordan K. Hubbard 

Quick 8tart 

This manual documents the process of making a new 
installation of FreeBSD on your machine. If you arc 
upgrading from a previous release of FreeBSD, please 
see the fOe UPGRADE.TXT for important information 
on upgradinf^. If you arc not familiar with configuring 
PC hardware for FreeBSD, you should also read the 
HARDWARE.TXr Ole - it contains important informa- 
tion vrbich may save you a lot of grief. 

If you're new to FreeBSD then you shduM also read 
EVERYTHING listed in the Documentation menu of 
the Installer. It may seem like a lot to read, but the 
time you spend now reading the documents will be 
made up many times over hccauso you were ad- 
equately preparcfl. Also, you will kimw the types of in- 
formation available should you get stuck later. Once 
the system Is installed, you can also revisit this menu 
and use a WI'.B browser to road tlir installed FAQ 
(Frequently Asked Questions) and Handbook HTML 
documentation sets for Fre^SD. You can also use 
the browser to visit other WEB sites on the net (like 
http://www.freebsd.org) if you have an Internet con- 
nection. See ABOUT.TXT for more information on the 
resources available to you. 

The best laid plans sometimes go awr>'. so if you run 
into trouble take a look at TKOUBLE.TXT which con- 
tains valuable truuljlcshooting information. You 
should also read ERRATA.TXr before installing and 
follow the pointers there carefully since ttils wIU stop 
you from falling over any problems which have re- 
ported in the interim for your particular release. 

DISCLAIMER: While FreeBSD does Its best to safe 
guard against accidental loss of data, it's still more 
than possible to WIPE OUT YOUR ENTIRE DISK with 
this installation if you make a mistake! Please do not 
proceed to the final FreeBSD installation menu unless 
you've adequately backed up any important data first! 
We really mean it! 

FreeBSD requires a 386 or better processor to run 
(sony. ttiere Is no support for "286 processors) and at 
least 5 megs of RAM to install and 4 megs of RAM to 
run. You will need at least 100MB of free hard drive 
space for the most minimal Installation. See below for 
ways of shrinking existing DOS partitions In order to 
install FreeBSD. 

InstaUing FreeBSD from CDROM or 
the Internet 

The easiest type of installation is from CD. If you have 
a supported CDROM drive and a FreeBSD installation 
CD from Walnut Creek CDROM. there are 2 ways of 
starting the Installation from it: 
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1. If your system supports bootable CDROM me- 
dia (usuatty an <^tlon which can be selectively en- 
abled in the controller's setup menu or in the PC BIOS 

for some systems) and you have It enabled, 
FreeBSD supports the "El Torrito" bootable CD stan- 
dard. Simply put the InstaliaUon CD in your CDROM 
ditve and boot the system to begin installation. 

2. Build a set of FreeBSD boot floppies from the 
floppies/directory in every FreeBSD distribution. Ei- 
ther simply use the "makeflp.bat" script from DOS or 
read floppies/fyEADME.TXT for more Information on 
creating the bootable floppies under difTcrent operat- 
ing systems. Then you simply boot from the 
first floppy and you should soon be in the FreeBSD in- 
stallation. 

If you don't have a CDROM and would like to simply 
install over the net using PPP, slip or a dedicated con- 
nection, simply fetch the 
<FreeBSD-release>/floppies/boot.fip file from: 

ftp://ftp.freebsd.org/pub/FreeBSD 

or one of its many mirrors 

(http://www.frecbsd.org/handbook/mirrors.html) 
and follow step 3 above. You should also read the 
floppies/README.TXr file as it contains important in- 
formation for downloaders. 

Once you have your boot floppies made, please go to 
section 1.5 of this document for additional tips on in- 
stalling via FTP or NFS. 



Detail on Tarions installation types 

Once you've gotten yourself to the initial installation 
screen somehow, you should be able to follow the vari- 
ous menu prompts and i;o from there. If you've never 
used the I'YeeBSD installaUon before, you are also en- 
couraged to read some of the documentation in the 
tlie Documentation submenu as well as the general 
"Usage " instructions on the first menu. 

NOTE: If you get stuck at a screen, hit the Fl key 
for online documentation rdevant to that specific sec- 
tion. 

If you've never instaUed FreeBSD before, or even if you 
have, the "Standard" installation mode is the most 
recommended since it makes anre 
that you'll visit all the various important checklist 
items along the way. If you're much more comfortable 
with the FreeBSD InstaUation process and know 
_exactly_ v/hat you want to do, use the Express or 
Custom Installation options, if you're upgrading an 
existing ^tem. use the Upgrade option. 

The FreeBSD instaUer supports the direct use of 
floppy. DOS. tape. CDROM. FTP. NFS and UFS parti- 
tions as installation media, further t^ on InstaUing 
from each type of media listed below. 
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Installing from a network CDROM 

If yoii simply wish to Install from a local CDROM drive 
then see the Quick Start section. If you don't have a 
CDROM drive on your system and wish to use a 
FreeBSD distribution CD in the CDROM drive of an- 
other system to which you have network connectivity, 
there are also several ways of going about it: 

1. If you would be able to FTP install FreeBSD directly 

from the CDROM drive in some FreeBSD machine, it's 
quite easy: You simply add the following line to the 
password file (using the vlpw command): 

ftp:*:99:99::0:0:FrP:/cdrom:/sbin/nolo^in 

And anyone else on your network will now be able to 
choose a Media type of FTP and type In: 
"ftp://<machine with CDROM drtvO" aftor picking 

"URL" in the ftp sites menu. 

2. If you would rather use NFS to export the CDROM 
directly to the machlnc(s) you'll be installing from, you 
need to first add an riitr\' to the /etc/cx|)orts file (on 
the machine with the CDROM drive) which looks 
something like this: 

/cdroiii -ro zlggy.foo.coin 

To allow the machine "ziggy.foo.com" to mount the 
CDROM directly via NFS during installation. The ma- 
chine with the CDROM must also be configured as an 
NFS server, of course, and if you're not sure how to 
do that then an NFS installation is probably not the 
best choice for you. unless you're willing to read up on 
rc.conf(5) and configure things appropriately. Assum- 
ing that this part goes smoothly, you should be able to 
enter: cdroni-host:/cdrom as tiie path for an NF'S in- 
stallation when the tai^t machine is installed. e.g. 
wiggy:/cdrom 



Installing from Floppies 

If you must Install from floppy disks, either due to im- 
supported hardware or Just because you enjoy doing 
things the hard way. you must first prepare some flop- 
pies for the install. 

First, make your boot flc^ples as described in 
floppies/R£ADM£.TXT 

Second, read the file LAYOUT.TXT and pay special at- 
tenUon to the "Distribution lormat ' section since it de- 
scribes which flies you're going to need to put onto 
floppy and which you can safety skip. 

Next you will need, at minimum, as many 1. 44MB 
floppies as it takes to hold all files in the bin (binaiy 
distribution) directory. If you're preparing these flop- 
pies luider DOS. then THESE floppies *must* be for 
matted using the MS-DOS FORMAT command. If 
you're using Windows, use th.e Windows FUe Manager 
format command. 

Don't trust Factory Preformatted floppies! Format 

them again \oursclf, just to make sure. Many prob 
lems reported by our users in the past have resulted 
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from the use of Improperly formatted media, which is 
why I'm taking such special care to mention it herel 

If you're creating the floppies from another l"retBSD 
machine, a format is still not a bad idea though you 
don't need to put a DOS fllesystem on each floppy. 
You can use the 'dlsldaber and "newfe' commands to 
put a UFS niesystem on a floppy, as Uie following se- 
quence of commands illustrates: 

fdfbnuat -f 1440 fdO.1440 
dlsUabel -w -r fdO.1440 floppy3 
newfe -t 2 -u 18 -1 1 -i 65536 /dev/rfdO 

After you've formatted the floppies for DOS or UFS. 

you'll need to copy the files onto them. Tlie distribu 
tion files are split into chunks conveniently sized so 
that 5 of them will fit on a conventional 1.44MB 
floppy. Go through all your floppies, packing as many 
files as wiU fit on each one. untU you've got all the dis- 
tributions you want packed up in this fashion. Each 
distribution should go into its own subdirectory on the 
floppy, e.g.: a:\bin\bin.inf. a:\bin\bin.aa. 
a:\bin\bln.ab, ... 

IMPORTANT NOTE: The bin. inf file also needs to go on 
the first floppy of the bin set since it is read by the in- 
stallation program in order to figure out how many ad- 

ditional pieces to look for when fetching and concat- 
enating the distril)ution. When putting distributions 
onto floppies, the <distname>. inf file MUST occupy the 
first floppy of each distribution set! This is also cov- 
ered In ABOUT.TXT 

Once you come to the Media screen of the install, se- 
lect "Hoppy" and you'U be prompted for the rest. 



Installing firom a DOS partition 

To prepare for installation from an MS DOS partition 
you should simply copy the files from tfie distribution 
into a directoiy caUed "FRC£BSD on the Prlmaiy 
DOS partition TDrlve C:"). For example, to do a mini- 
mal installation of FreeBSD from DOS using files cop- 
ied from the CDROM, you might do something like 
this: 

C:\> MD C:\FREEBSD 

C:\> XCOPy /S B:\BIN C:\FREEBSD\B1N 

Assuming that 'E:' was where your CD was mounted. 

For as many 'DISTS' as you wish to install Ironi DOS 
(and you have free space for), install each one in a di- 
rectoiy under 'C:\Fi?EEBSD' - the BIN dist is only the 
minimal requirement. 

Once you've copied the directories, you can simply 
launch the installation from floppies as normal and 
select "DOS" as your media type when the time comes. 



Installing from 9IC/SCSI Tape 

Wlu ii insialling from tape, the installation program 
expects the files to be simply tar ed onto it. so after 
fetdtiing all of the flies for the distributions you're 
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interested in. simply tar them onto the tape with a 
command something like this: 

cd /where/you/have/your/dists 

tar cvf /dev/iwtO (or /dev/rsaO) distl .. dlst2 

When you go to do the installation, you should also 
make sur- that you leave enough room in some tern 
poraiy directoiy (which you'll be allowed to choose) to 
accommodate the FULL contents of the tape youVe 
created. Due to the non-random access nature of 
tapes, this metliod of Installation requires quite a bit 
of temporary storage! You should expect to require as 
much temporary storage as you have stuff written 
on tape. 

SPECIAL NOTE: When going to do tlie installation, the 
tape must be in the drive •brfore* booting from the 
boot floppies. The installation "probe" may otherwise 
fail to find it. 

Now create a boot floppy as described in section 0.1 
and proceed with the installation. 



Installing over a network using FTP or 
NFS 

After making the boot floppies as described in the first 
section, you can load tlie rest ol llu' installation over a 
network using one of 3 types of connections: 

Serial port; SLIP / PPP 

Parallel port: FLIP (using '"laplink'' style 
cable) 

Ethernet : A standard Ethernet controller 

(including certain PCCARD devices) . 

Serial Port 



SLIP support is rather primitive, and is limited pri- 
marily to hard wired links, such as a serial cablt- riui- 
ning between two computers. The link must be hard- 
wired because the SLIP installation doesn't currently 
offer a dialing capability. If you need to dial out with a 
modem or otherwise dialog witli the link before con- 
necting to it, then I recommend that the PPP utility be 
used instead. 

If you're using PPP, make sure that you have your In 
ternet Service Provider's IP address and DNS informa- 
tion handy as you'll need to know it fairly early in the 
installation process. You may also need to know your 
own IP address, though PPP supports dynamic ad- 
dress negotiation and may be able to pick up this in- 
formation directly from your ISP ff tliey support it. 

You will also need to know how to use the \'arious "AT 
commands" for dialing out with your particular brajid 
of modem as the PPP dialer provides only a very 
simple terminal emulator. 



Parallel Port 
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If a hard-wired connection to another FreeBSD or Li- 
nux machine is available, you might also consider in- 
stalling over a "laplink" style parallel port cable. The 
data rate over the parallel port is much higher than 
what is typically possible over a serial line (up to 
50k/sec). thus resulting in a quicker installation. It's 
not typically necessary to use "real" IP addresses when 
using a point-to point parallel cable in this way and 
you can generally Just use I^C 1918 style addresses 
for the ends of the link (e.g. 10.0.0.1, 10.0.0.2. etc). 

IMPOOTANT NOTE: If you use a Linux machine rather 
than a I reeBSD machine as your PLIP peer, you wtil 
also have to specify "UnkO" in the TCP/IP setup 
screen's "extra options for ifconflg" field in order to be 
compatible with Linux's sUghtty different PUP proto- 
col. 



Ethernet 



FYeeBSD supports most common PC Ethernet cards, a 

table of supported cards (and their required settings) 
being provided as part of the lYeeBSD Hardware 
Guide (see the Doeuineiitation menu on the boot 
floppy or the top level directoiy of the CDROM). U you 
are using one of the supported PCMCIA Ethernet 
cards, also be siue that it's plugged in before^ the 
laptop is powered on! FreeBSD does not, unfortu- 
nat^. currently support "hot insertion" of PCMCIA 
cards during installation. 

You will also need to know your IP address on the net- 
work, the "netmask" value for your address class and 
the name of your machine. Your system administrator 
can tel! you which values are appropriate to yoiu par- 
ticular network setup. If you will be referring to other 
hosts by name rather than IP address, you'll also need 
a name saver and possibly the address of a gateway 
(If you're using PPP. it's your provider's IP address) to 
use in talking to it. 

If you do not know the answers to these questions 

then you shouk! really probably talk to your system 
administrator _lirsl_ before tiying this type of installa- 
tion! Using a randomly chosen IP address or netmask 
on a live network will almost certainly get you shot at 
dawn. 

Once you have a network connection of some sort 
liking, the Installation can continue over NFS or 
FTP. 

NFS Installation tips 

NFS installation is fairly straight-forward: Simply copy 
the FreeBSD distribution llles you want onto a server 
somewhere and then point the NFS media selection at 
it. 

If this server supports only "privileged port " access (as 
is generally the default for Sun and Linux worksta- 
tions), you wiU need to set this option in the Options 
menu before installation can proceed. 
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If you have a poor quality Ethernet card which suffers 
from very slovr transfer rates, you may also wish to 
toggle the appropriate Options flag. 

In order for NFS Installation to work, the server must 
also support "subdir mounts", e.g. if yoiu- FreeBSD 
distribution directory lives on: 

wlggy:/usr/archive/stuff/FreeBSD Then wiggy will 
have to allow tlie direct mounting of 
/usr/archlve/stuff/FreeBSD, not Just /war or 
/usr/archtve/stuff. 

In FrceBSD's /etc/exports file this is controlled by the 
"-alldirs" option. Other NF^ servers may have differ- 
ent conventions. If you are getting 'Pomission De- 
nied' messages from the server then it's likdy that you 
don't have tliis properly enabled! 



FTP Installation tips 

FTP installation may be done from any mirror site 
containing a reasonably up-to-date version of 
FrccBSD. A full menu of reasonable t hoici s for al 
most any location in the world is provided in the FTP 
site menu during Installation. 

If you are installing from some other FTP site not 
listed in this menu, or you are having troubles getting 
your name server configured property, you can also 
specify your own URL by selecting the "URL" choice in 

that menu. A UI^I. can contain a liostnamc or an IP 
address, so tiie following would work in the absence of 
a name server: 

ftp://192.216. 191.11 /pub/FreeBSD 

There are two FTP installation modes you can use: 

oFTP: 

For all I'TP transfers, use the standard "Active" 
mode for transfers. This will not work through most 
firewalls but 10 often work best with older ftp servers 

that do not support passive mode. If your connection 
hangs with passive mode, try tliis one! 

o FTP Passive: 

For all FTP transfers, use "Passive" mode. This al- 
lows the user to pass through firewalls that do not al- 
low incoming connections on random port addresses. 

NOTE: ACTIVE AND PASSIVE MODES ARE NOT THE 
SAME AS A •PROXr CONNECTIONS, WHERE A 
PROXY FTP SERVER IS USTENING ON A DIFFERENT 
PORT! 

In such instances, you should specify the URL as 
something like: 

ftp: / /foo.bar.com: 1 234/pub/FreeBSD 

Where '1234 " is the port number of the pro^Qr ftp 
server. 
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Tips for Serial Console Users 

If you'd like to install FreeDSI) on a machine using 
Just a serial port (e.g. you don't have or wish to use a 
VGA card), please follow these steps. 

1. Connect some sort of ANSI (\'tlOO) compatible ter- 
minal or terminal emulation program to the COMl 
port of the PC you are installing FreeBSD onto. 

2. Unplug the keyboard {yes. tliat's correct!) and then 
tiy to boot from floppy or the installation CDROM, de- 
pending on the type of installation media you have, 
with the k^board unplugged. 

3. If you don't get any output on your serial console, 
plug the keyboard in again and wait for some beeps. 
If you are booting bom the CDROM, proceed to Step 5 
as soon as you hear the beep. 

4. For a floppy boot, the first beep means to remove 
the kem.flp floppy and insert the mfsroot.flp floppy, 
after which you should press enter and wait for an- 
other beep. 

5. Hit the space bar. then enter 

boot h 

and you should now definitely be seeing everything on 
the serial port. If that still doesn't work, check your 

serial abling as well as tlie .settings on your terminal 
emulation program or actual terminal device. It 
should be set for 9600 baud, 8 bits, no parity. 

DOS user's duestion and Answer sec- 
tion 

He(p/ / have no spacel Do I need to delete everything 
first? 

If your machine is already running DOS and has little 
or no free space available for FreeBSO's installaUon. 
all is not lost! You may find the "FIPS" utility, pro- 
vided in the tools/ subdirectory on the FreeBSD 
CDROM or on the various FreeBSD ftp sites, to be 
quite useful. 

FIPS allows you to split an odsting DOS partition into 

two pieces, preser\ing the original partition and allow- 
ing you to install onto the second free piece. You first 
"dcfrag your DOS partition, using the DOS 6.xx "DE- 
FRAG" utility or the Norton Disk tools, then run FIPS. 
It will prompt you for the rest of the information it 
needs. Afterwards, yon can relioot and install 
FreeBSD on the new partition. Also note that FIPS 
will create the second partition as a "clone" of the first, 
so you'll actually see that you now have two DOS Pri- 
mary partitions where you formerly had one. Don't be 
alarmed! You can simply delete the extra DOS Pri- 
mary partition (making sure it's the right one by ex- 
amining its size! :) 

NOTE: FIPS does NOT currently work with FAT32 or 
VFAT style partitions as used by newer versions of 
Windows 95. To split up such a partition, you will 
need a commercial product such as Partition Magic 
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3.0. Sorry, but this is just the brealts if you've got a 
Windows partition homing 

your whole disk and you dont want to rtinstall from 

scratch. 

Can I use am^ressed DOSJUesystemsJirom FreeBSD? 

No. If you are using a utility such as Stacker(tm) or 
DoubleSpace(tm), FreeBSD will only be able to use 
niiatever portion of the filesystem you leave uncom- 
pressed. The rest of the filesystem will show up as 
one large file (the stacked/dblspaced file!). DO NOT 
REMOVE THAT FILE as you wUi probably r^ret it 
greatly! 

It is probably better to create another uncompressed 
DOS extended partition and use this for communica- 
tions between DOS and FreeBSD If such is your de- 
sire. 



Coil I mount my DOS extended partitions? 

Yes. DOS extended partitions are mapped in at the 
end of the other "slices" In FreeBSD, e.g. your D: drive 

might lie /ckv/daOsB. your E: drive /dev/(in()s6, and 
so on. This example assumes, of course, that your ex- 
tended partition Is on SCSI drive 0. For IDE drives, 
substitute "ad" for "da" appropriately. You otherwise 
mount extended partitions exactly like you would 
mount any other DOS drive. e.g.: 

mount -t msdos /dev/da0s5 /dos_d 



Can I run DOS binaries under FreeBSD? 

Ongoing work with BSDFs doscmd utility is bringing 
this much closer to being a reality In FreeBSD 3.0, 
though it still has some rough edges. If you're inter- 
ested in working on this, please said mall to 

emulatIon@FreeBSD.org and Indicate that you're In- 
terested in Joining this ongoing efibrt! 

There is also a neat utility called "pcemu" in the ports 
collection vMch emulates an 8088 and enough BIOS 

ser\'lces to run DOS text mode applications. It re- 
quires the X Window System (XFree86) to operate. 

Creating a Log Class in 
Perl 

Author Tiie Oulrider Computing Journal 

One recurrent theme in my Job as a database 
administrator/assistant sjrstems 

administrator/systems analy.st is the need to keep 
track of what happened on the systems while 1 wasn't 
watching. Wliat did the cron Job do last night. What 
did all those spooler daemons do while I was at lunch? 
In other words log^g. It bothered me that there was 
a lack of simple tools for doing such a simple, redun 
dant Job. So, I set out to do build some myself. My 
systems programming tool of choice is Perl, so, that Is 
language I chose for the project. This Journey took me 
out of my normal routine of straight-line Perl 
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programming and dumped me in the land of Modules 
and Direct Oriented Peri. Tm ^ad to say tt didn't over- 
^elm me and In fiact I found it rattier easy to wilte. 

My first order of business was to take my old standby 
logging routines and objectil^ them. 1 had several con- 
cise routines that I would either import Into the main 
package through a use statement or Just simply 
copy/paste depending on my mood and what 1 was 
doing. Th^ consisted of four routines: start_k>^big, 
stopjo^ing, restartJogglng and log. 

sub start_logging{ 

local ($log file) = ® [0] ; 
open (LOG, "?log_f ile"T; 
$log = 1 if LOG; 



svib stop_logging{ 

close (LOG) if ($log) ; 

$log=0; 

return 1; 

} 

sub log { 

local ($string) » ®_[0] ; 
if ($log) { 

print LOG &datetinie, ** : 

$string\n" ; 

return 1 ; 

} 

return 0 ; 



Lot's of room for Improvement there (I left 

restart_logging out because it only differed from 
start_logging by one character. Instead of 
open(LOG. $log_Ii!c ): it had: open(LOG."$log_flle"): to 
append to the log file and not overwrite it). This was 
quick and dirty code that, while it did the job. was not 
very simple to use. For example, if I needed to redirect 
the output of a sub-process to the log file 1 would have 
to say: stop_loggingO. then run that process and redi- 
rect Its output to the log then restartJoggingO again. 
It was Rather clumsy and difficult to document. So, I 
set about to rewrite the routines in an object oriented 
manner. 1 followed the Tliree little rules' as formu- 
lated by Larry Wall In the objpeii(l) man page and re- 
stated by Damlan Conway In hte book "Object Ori- 
ented Perl": 

Rule 1. To create a class, build a package 
I created a new dlrectoiy called File under one of the 
slte_perl directories that our perl executables looks in 
(I found the directory by running "perl -V" and exam- 
ining the @INC array), in the File directory 1 created a 
file called Log.pm . I set this file as Its own package fay 
declaring a package name at the top of the file: 
package File: :Log; 

Get the connection between the package hierardiy 
and the directory structure? 1 included the standard 
packages I use for messages and file handles and such 
(good Peri programmons always use strict and -w): 

use strict; 
use FileHandle; 
use Carp; 

Rule 2. To create a method, write a sub- 
routine 

First, I wrote the _start_log method. 
s;ib _start_log { 

my ($self, ®args) *> 0 ; 

unlink $self-{'_logfiTe' }; 
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$self -print ( "Begin logging") 
return 1 ; 



Pretty simple (we will look at the strange references in 
a moment). This looks nothing like the startjogging 
subroutine I started with. Where did I put the open for 
the log file? I had an inspiration. I put the open and 
the close statements in the print method so my pro- 
grams wouldn't keep the log file open all the time. 1 
can then read the log file while the program is running 
and always see the latest logging Information. So. in 
fact 1 no longer even needed a start_log method, but 1 
did want to put an entry at the top of the log file so 1 
would have an accurate log start time recorded. All 1 
needed to do from here Is write the print method: 

sub print { 

my ($self, @args) = ®_; 

unless ($self- { '_fh' }-open {"" .$self-- 
{ '_logfile' }) ) { 

croak "Failed to open \"".$self-- 
{ '_logfile' } . "\"" ; 

print {$self - { '_fh' } } $self-- 
_datetime { ) . " : ®args\n" ; 
$self-{' fh' }-close() ; 

) 



I have tried to sneak in some stuff without explaining 
it. but now 1 need to explain. Believe me this looks 
much more complicated than it really is. First, the 
way in which an attribute of a class is referenced is 
like so: $self-{_lognie) (1 added the tic marks so that 
strict wouldn t complain about bare words). This is es- 
sentially a pointer to an attribute called _logflle that 
belongs to the instance of class l>og called $self. Where 
did that $self come from in the method? When you say 
this: $self-print() Perl considers it a method call and it 
automagically passes the reference object as the first 
argument to the method. Hence the idiom: 
my ($self, ®args) = @_; 

as the first line of the method to extract the object ref- 
erence from the "real" arguments. If 1 had written print 
as a subroutine within main without the FileHandle 
methods it would have looked something like this: 

sub print { 

local ($logf ile, ©message) = ®_; 

open FH, "$logfile" or croak "Failed 
to open $logfile"; 

print FH datetimeO, ": ", ©message, 
"\n" ; 

close FH; 

} 



my $self = bless { _logfile = $arg[0], 
fh = new FileHandle, 
y, $class; 

$self -_start_log ( ) ; 
return $self; 

} 



Bless is a built-in Perl function used to mark a vari- 
able as belonging to a particular class (or namespace). 
The 'new' method blesses the object handle ($sell), 
calls _start_log to Initiate a logging session (and write 
that initial line to the log) and then returns the object 
handle back to the calling routine so we can reference 
the object. _logfile and _fh are the attributes of this 
new object and hold the log flle name and the file de- 
scriptor respectively. 

Then I added the _datetime method to the class. I will 
leave that out of tills discussion since it merely re- 
turns the date and time in a readable format to 
prepend to each line of the log. 

That is all there is to it. But, there are a couple of 
things we ought to add. First of all in true object ori- 
ented programming there are two methods required 
for any class a constructor and a destructor. We al- 
ready have a constructor so let's build a destructor. 
We ll use some more Perl built-in stuff to do this. Perl 
will automatically call a method called DESTROY for 
any object when it goes out of scope. It would most 
likely be able to handle this simple log object without 
any help but there is one thing 1 would like to do when 
I am done logging. 1 want the program to write a final 
line so 1 have a quick method to determine if a process 
stopped short or finished processing and have an end- 
ing time for the log file. So here is my destructor: 

sub DESTROY { 

my ($self, ®args) = ® ; 
$self -print ( "End Logging"); 



} 



undef $self- 
undef $self- 
return 1 ; 



'_fh' }; 
'_logf ile' } ; 



This nicely frees up what little space was being used 
by this object and writes a short message to the end of 
the log. 1 have left the destruction of the object itself 
for Perl to handle. Since this was so simple to do I de- 
cided to add a few niceties into the class while I was 
there. 1 added this to the top of the file. 

{ 

my %_visible = 



( 



logfile = undef. 



With all of those '-' out of the way it looks cleaner but 
it is not as flexible. Not to mention the fact that there 
would be confusion between the built-in print routine 
and this subroutine (Perl wouldn't be confused but 
programmers could easily be mislead). 
Rule 3. To create an object, bless a referent 
1 created a constructor method. In object oriented pro- 
gramming the standard name for a constructor 
method is 'new". 



sub new{ 

my ($class, @arg) 



} 



sub _accessible { 

exists $ visible{$ [1]}; 

} 



@ 



A hash that has the names of the attributes that 1 
want to make publicly accessible (its a simple matter 
to add to this list if I add attributes or want other at- 
tributes to be available) and an _accessible subroutine 
to return true if a particular attribute is accessible. 
The reason 1 wrote it this way was to make use of an- 
other Perl built-in: AUTOLOAD. If the Perl interpreter 
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comes to a method call that doesn't exist, it looks to 
see if there is an AUTOLOAD method in the same 
class. It puts the non-existent method name in a vari- 
able called $AUTOLOAD and executes the AUTOLOAD 
method. In toy case I ovSy want It to return the value 
stored In the attribute so I wrote this: 

sub AUTOLOAD { 

my ($self) = @_; 

$AUTOLOAD =~ / . * : :get (_\w+) / 

or croak "No such method: $AUTO- 

LOAD"; 

$sel£-_accessible ($1} 

or croak "No such attribute: $1"; 
return $8elf-{$l}; 



This calls _accessible to see if there is a publicly ac- 
cessible attribute that looks like the method call with- 
out get' at the beginning and returns the value of the 
attribute 11 11 exists. Got that? Let's look at it this way: 
i want programmers to have access to the _logflle at- 
tribute so that they can at any point recall the name 
of the log file being written to. So, I put logfilc in the 
%_visible hash, whicli I have told my AU TOLOAD sub 
routine to look at for possible matches. So if I use a 
method like this: $log_flle_name = $log-getjogfile0: 
even though I havent explicitly written a method 
called get logfile it will return the contents of the at- 
tribute _logfile. Kinda neat, huh? 
Now to setup and write to log flies in my programs is 
simple: 

Use File: :Log; 

# create a log file 

$log ■ new File : :Log ( "mylogf lie . log" ) ; 

# write to the log 

$log-print ("This is a log entry"); 

# redirect the sub-process to my log 
file 

system ("my_sub_process", "2&1", "", 
$log-{'_logfile' }) ; 

# write more stuff to the log 
$log-print ("This is another log entry"); 

# close up the logging session 

undef $log; 

1 added a little bit more to the class than I described 
here, if you'd like a copy of the Log class in it's com- 
plete form it can be foimd here Lo g.Dm . 

This article is re-printed wUh pennlssion. The original 

can be found at 

http://www.dlverge.org/outrider/20001 1 ijlog.shtnil 

Releasing OSDA at 
AOSS2 

Author: Andrew \ under Stock 
email; ajv@greebo.neI 
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Friday 

After a hectic week, 1 made my way from home to the 
airport with my frantically packed cany-<»a and lap- 
top, and thus to the Qantas Club with tmseemly 
haste. I had a couple in the Club before boarding my 
flight to Adelaide. 

Once in Adelaide, I zoomed to the cafe where f)eople 
from the conference were having dinner. I should have 
caught an earlier flight - I do like my food, but good 
company is so much more. Adelaide didn't disappoint 
on the cake and coffee front, and the company was 
fine. 1 met up again with my friend Skud and met 
Sarah, one of the organisers, and a few of the other 
speakers for the first time. 



Saturday 

Got up a little too early: daut; that half hour time zone 
difference! Breakfast being delivered is the nicest part 
about staying away from home, and this was no ex- 
ception. 

1 was dropped off by the cab almost at the conference 
venue, but since 1 needed to make a booking for a hire 
car for the next day, I didn't mind too much. 1 was a 
UtUe early, and managed to organise a car and still be 
the first person to register lor the day. Conlcrcncc at- 
tendees received these nifty packs virith stuff in them, 
Uke Caldera's Linux Technolog/ Preview. 1 thought 1 

had every' RedHat publication under the sun. so 1 
avoided one of their folders, and so missed out on Red 
Hat 7.0 CD's. Not a great loss. 

The conference kicked off wefl, with pretty good at- 
tendance for a smaller city like Adelaide. We had a 
quick pep talk from one of the local IT boosters, and 
then onto the main program. 

Dan Shearer: Open Source, Opening Doors 

A good talk aimed at increasing OSS usage in compa- 
nies. Ihe entry by stealth model is falling away as the 
desired mechanism and how you can make money do- 
ing open source. 



Richard Sharpe: Cutting coiie in Qantas Club 

Richard is probabty best known for his Samba work, 
but this talk was more about Ethereal, which I use ex- 
tensively. Richard didn't have time to discuss how he 
codes at the Qantas Club, but I imagine with the free 
booze and other distractions available there... :-) 



Cireg Lehey: Revamping tlie FreeBSD SMP 
implementation 

E.xccllcnt talk given by a master of the trade. Greg de- 
tailed how tlie new SMP implementation dilfered from 
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previous efforts, and the benefits of the new imple- 
mentation. 



Michael Still: Panda 

Michael gave us a talk about his PDF enabled graph- 
ics library. Panda allows programs to directly output 
to PDF at the highest quality available to them. It's 
still a work in progress, but It seemed to work nicety. 

Jay SchuUst: Implementing Network Device 
Drivers in the Linux kernel 

Jay knew his stuff and he gave an exceUent presenta- 
tion, showing us how easy it is to make a working net 
work driver. Of course, it was one that he had pre- 
pared earlier, but he did run make. :-) 



Lunch was nice, and I had a good chat with various 
people. 

Geoffrey D. Bennett: The Katie revisimi con- 
trol system 

Katie is a clearcase fllesystem revision control system. 

It worked very nicely and with a bit of polishing Will be 
an excellent tool lor developers sick of CVS. 



Kirrily "Skud" Robert: Perl 6 

A good talk, certainly one of the more interesting to 
me as they seem to be applying large scale software 
engineering to the open source model. I will be very in- 
terested to see how this turns out. Skud used Mr Lap- 
top who runs Wta2K. She still used a HTML presenta- 
tion, though :-) 



Presentations, AUUG and SAGE-AU (and 
ISOC-AU) 

This one was a surprise for mo as I didn't expect to 
have to do this one. So I wuiged it. ISOC-AU were 
probabfy unaware of it as well, as no one was there 
who was a member (unusual) or from the exec. I pre- 
sented first and got the message across as to what 
SAGE-AU does for its members (which is quite a lot, 
but not everyone sees that). 

Afternoon tea 

I was pleasantly surprised to be hunted down by Phil 
Kemlck. Phil Is one of our SAGE-SA members, but 
SAGE-SA doesn't exist yet. and I'd like it to. Phil basi- 
cally demanded to be let run it, so by the time you 
read this SAGE-SA should be off the ^ound. Yeehah! 
Who says conferences are a waste of time? 
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Glen Turner: Writing programs for future 
networks 

Glen's talk was excellent and I managed to talk to him 
later about IPv6, a major pet project of mine. AARnet 
are likely to be an occellent test btmny for subver- 
sive ideas. :-) 



Conrad Parker: Sweep 

About the only end user application presented at the 
conference, which made a pleasant change. Conrad 
showed off Sweep, a sound progreun that does for 
sound what Gimp does for graphics. Very nice. He 
gave out handouts with the Sweep plugin SDK 



Andrew van der Stock: OSDA 

I did the only PowerPoint presentation of the entire 
conference! :-) I couldn't contact my ISP due to my 

modem dialling too fast for the hotel's poor excuse for 
a PABX. so Lukes magicpoint HTML simply didn't 
come through in time. OSDA details cap be found at 



Michael Neuling: Linux packet filtering 

Michael, one of the authors of IF chains, gave an over- 
view of the more lle.xitjlc Net Filter which is due to ap- 
pear in 2.4 when it finally finishes baking. As a secu- 
rity freak. I enjoyed the talk. 



After the conference had finished, we headed off to the 
pub, and had a few drinkies. North Terrace is where 
the Hyimdal Excel Rice Boy Car Club has their unof- 

ncial 20 km/b drag races, so we saw a Wide range of 
tricked up Excels. Very amusing. 

http://www.riceboypage.com 

After the pub, we walked clear across town to a Japa- 
nese restaurant. They took a long time to serve us, 
which detracted from an otherwise excellent feed. 

Again, the company was excellent. I had turned into 
major pimipkin and decided to call it a night after 
that, rhe others pottered off with the change to an- 
other pub. 



Sunday 

Had a late breakfast and picked up the car and then 
Skud before driving out to Greg Lehey's place. Skud 
doesnt have a license I found out, and sturj^l^n^^ 
enough for a SCA person, her navigational skills Wittl 

a map were fairly rusty. Since I'm of the Uirk Gently 
school ol Ihniight when it comes to going places, we 
missed our turn off and drove a little further than we 
expected to. 

Once we arrived a little after the 11 am start time, we 
found that we were the first lot of people to turn up 
there that day, with Luigi seemingly staying at Greg's. 
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Greg and liis family live on acreage out in the country. 
It made a nice change. It's only 35 minutes out of Ad- 
elaide, but it really is tlie country. 



one had a GPS receiver and metropolitan maps do not 
detail every little C road, and signage in South Austra- 
lia could be better. 



They have a lovely rambling house, horses and whip- 
pets. Unfortunately, whilst we were waiting for the 
others to arrive, one of the family's two cats was found 
dead on the highway outside the property. Luigi and 
Greg gave it a proper burial. 1 felt so bad, and I thank 
Greg and his family for continuing on the BBQ. If 
Greebo or Meebles died, 1 would have sent everyone 
home whilst I had a good blubber. 

Despite this tragedy, we had a good lunch with mostly 
everyone turning up after getting lost in various ways. 
Greg gave us good directions, but unfortunately, no 



Greg showed olT his computer rooms. He has a wide 
variety of equipment in various stages of disrepair or 
working order. His guestrooms even have their own 
terminals. 

After a long day, Skud and 1 departed for the airport. 
Skud Is off to the wide white land of Canada soon. I 
wish her well; she'll do great at e-Smith. 



Friday 
night 



Sarah Bol- 
dcroir 
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Red Hat Linux 7 

You will find enclosed a copy of Red Hat Llniix 7. This product is ideal for the experienced user. Red Hat Linux 
contains all the essentials to upgrade or install a workstation or server. If you would like enhanced support fea- 
tures and applications, then you can purchase the deluxe or professional versions of Red Hat 7. To receive a list 
of distributors email paciflcrimQredhat.com 

Red Hat 7 Deluxe 

Red Hat Deluxe Workstation contains everything you need to introduce yourself to Red Hat Linux 7. In addition to 
the award-winning Red Hat Linux operating system. Deluxe Workstation gives you Office Suites. PoweiTools. 
demos and full versions of numerous applications, plus services to help you get started. 

Red Hat 7 Professional 

Red Hat Professional Server contains everything you need to set up Red Hat Linux 7 for a serious server environ- 
ment. In addition to the award winning Red Hat Linux operating system. Professional Server gives you four bonus 
CDs of server- related software and two CDs of workstation applications plus the services to help you get started. 
Support entitlements include 30 days telephone installation support, 90 days web-based installation support. 30 
days web-based apache configuration support. 

Red Hat Training 

Red Hat Asia-Pacific has a wide range of training courses designed for all levels of Red Hat Linux users. Red Hat 
ofiers the highest quality Linux and certification available. All Red Hat courses are taught by Red Hat Instructors 
who have achieved their RHCE. 

Skills Courses: 

RH300: Red Hat Certified Engineer 

Ensures that a person is ready from a technical point of view for professional responsibilities in managing a Red 
Hat Linux system for common uses. 

Developer courses Tracks for kernel and device driver developers and for application and GUI programmers. 

fy4D143: Red Hat Linux Programming Essentials 

Trains you in skills for developing applications on Red Hat Linux 

RHD22 1 : Red Hat Device Driver Training 

Designed to teach the experienced programmer how to develop device drivers for Linux systems 
Advanced courses 

RHD320: Red Hat Apache and Secure Web Server AdmlnlstraUon 

For tfiose who desire intensive hands on training on configuration and management of an Apache web server. 

For more information visit www.redhat.com/tralning/asiapac. 

To receive a discount for AUUG members email training-au@redhat.com 
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The Open 

Source Lucky Dip 

Con Zymaris 
coazOcyber.coin.au 

Welcome back. 

Hopefully you made it to either (or both of!) the AUUG 

Security Symposium or the Australian Open Source 
Symposium over the past month or so. I had the 
chance to make it to one of them, and I was very im- 
pressed by both the breadth and quality of the speak- 
ers. Do jrourself a favour and book In the next AUUGN 
organised event. In tiiis industry you need to keep 
your proboscis aiioad of pack, and attending these 
highly Informationally nutritious events is a good 
start. Righto, let's check out this edition's pickings. 



### 

Report is. eucqjonc who has scci} tlw jWiiuloiPsI auk' 
is now dead. Tfiey tiave all laughed themselves to 
death. 

From a Slashdot discussion about the Microsoft 
"hack' 

### 



Java Media Framework 

A recent news item from the Blackdown Java-Linux 
Team announceed the availability of the JMP 2.1.1- 
beta2 Performance Pack for Linux/i386: 

According to the notes from the Team, the Java Media 
Framework (JMF) is an API for incorporating audio, 
video and other time-based media into Java applica- 
tions and applets. It i.s an optional packaj^e that ex- 
tends the multimedia capabilities on the Java2 plat- 
form. 

For general information about JMl*" and documenta- 
tion visit http://Jcttxx.sim.com/pmducts/Java- 
media/Jn^/index.html 



Jumpgate 0.6 

Jumpf^atc is a TCP connection forwarder that author 
Patroklos Argyroudis claims that provides many en- 
hancements and improvements over the existing pro- 
grams that do the same thing. Read more here: 
http://zion.bsd.gr/~lnvlslbl/projects/ 



Meow 1.0 

From the wacky Unix tools collection, comes Meow. 
Apparently Meow is a text stream monitor. Uke the 

cat command. Meow accepts lines of text from stdin 
and echos them to stdout. As Meow relays eacli line of 



text, it compares the line to a set of user-defined pat- 
terns, and if a match Is found, it plays the correspond- 
ing sound flic. The intention of all this is to make 
Meow is an ideal tool for monitoring system log flies 
for specific events. 



New version of AMANDA released 

AMyVNDA (Advanced Maryland Automatic Network 
Disk Archiver.) for those that don't know, is a backup 
system that allows the administrator of a LAN to es- 
tablish a single master backup server to perform 
backups of multiple hosts to a single tape drive. 
AMANDA uses native dump and/or GNU tar facilities 
and can back up a large number of woikstations run- 
ning various versions of Unix. SAMBA is also sup- 
[iorted so tliat AMANDE can be used to back up Mi- 
erosofi Windows 95/NT workstations and servers. 
More information available here: 

http://www.amanda.org/ 



Relive past ZORK glories. 

Feel like blowing away many hours in the mindless 
pursuit of adventure? Just in time for the summer 

holidays is Frotz. Frotz is an interpreter for playing all 
of Infocom's text adventures and other Z Mac hiue 
games. Written by David Griinth, Frotz complies with 
Graham Nelson's Z-Machine standard vl.O, and runs 
well on most flavors of Unix. Download it firom 
http://www.c8.csubak.edu/~dgrlfIl/&otz/ 



GUI for Embedded Linux 

Linux seems to have opened up the world of embedded 

systems development for many developers. Palm-Uke 
devices running Linux are popping up all over. If you 
are at all interested in working with one of these, 
you'll obviously need a GUI, and since X is way too big 
for this form factor, you'll need another GUI. Accord- 
in[» (o the people at the MiniGUI consortiimi, MiniGUI 
is a mini grapiiical user interface (GUI) support sys- 
tem for Linux which proWdes an event-driven API for 
applications. MiniGUI provides an application the 
ability to create multiple windows in multiple threads, 
and can draw in these windows without interfering 
with each other. MiniGUI 0.3.xx has a Graphics Ab- 
stract Layer (GAL) and an Input Abstract Layer (lAU. 
so MiniGUI can nui on manv Graphics Engines, in- 
cluding SVGALib and LibGGl. By using GAL and LAL. 
MiniGUI applications can run on X Windows as well. 
The MiniGUI consortium also states that this makes 
debugging of applications and porting to other hard- 
ware easier. MiniGUI provides native support for many 
image types including GIF. JIXS, PCX, LBM/PBM, and 
BMP, support for rnu'IViH- and Adobe Typel fonts, 
and support for GB2312 and BIGS charsets. MiniGUI 
is available as LPGL software, so it's for all the family. 
More information is here: http://www.mlnlgul.org/ 



NetBSD: Port it here, Port it there. 
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Ok, it's been around 6 months since the last release, 
but the NetBSD team have been busy beavers. For the 
minority reading this who don't know. NetBSD is a 
free, open source, highly portable. UNIX-like operating 
system available for many platforms, from 64-bit Al- 
phaServers to handheld devices. Its followers are 
people who enjoy clean design and advanced features, 
and NetBSD is known for Its reliability in production 
environments and its interest for research groups. 
NetBSD runs on thirty different system architectures 
featuring eleven distinct families of CPUs, and is being 
ported to more. But then, you knew that ;-) 
http://www.netbsd.org/ is, of course, home. 



^ Exploder 




General Protection Fault 



ignore 



Reboot 



Install Linux ... 



If you have any experiences us- 
ing Linux that you would lil^e to 
share with other AUUGN read 
ers, drop us a line at: 

auugn@auug. org. au 

We'd love to hear from you! 
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Cop, i.y. r.alerial 



liniix,conf«att 

CooZymaris 
coaz9cyber.coin.au 



The forthcoming Linux technical conference. 
linux.conf.au. Is shaping up to be a most interesting 

event. Tlie number of interestintf talks scheduled 
makes for compelling reason to attend. Even for those 
not using Linux, there are a plethora of worthwhile 
subjects covered, including Perl, nnome. Securiiy, 
UNS. MTAs, clusters. 2D/3D graphics. H.323 coiimis. 
rsync. docljook and documentation of Open Source 
projects. I've included the list here, as it was released 
by the conference organisers at the time of writing. 

Keynote Speakers 

Alan Cox. Dave Miller. THdge 



Papers 

Cluster System Administration and GFS 
- John Goebel. Ken Preslan 



The Debian packaging system 

- WIchert Akkerman 

This talk will explain the workings and design ol the 
Debian packagemanagement system. This system con- 
sists of a lot of components that work together to pro- 
vide an comprehensive system for managing a Linux 
or other Unix-like system.lt will cover everything from 
the lowievel tools to manipulate packages to friendly 
user interfaces and utilities to make packaging easier. 

e-smith sewer and gateway 

- Klrrity Skud' Robert 

The e-smith server and gateway is a GPL'd Ilnux dis- 

tributlon aimed at small to medium sized organisa- 
tions who require internet services (mall, web server, 
proxies, collaboration tools, etc) without the sysadmin 
requirements of a general purpoae Linux system. It is 
quick and easy to Install, and is administered primar- 
ily \ia a web interface. Tli is presentation takes a look 
at the technology underlying the e-smith server and 
gatewi^ sjrstem. and discusses some of the challenges 
feced by e smitli in building an Open Source com 
munity of developers and users. Kirrily "Skud" Robert 
(will have, by the time of the conference) recently 
started working for e-smith in Ottawa. Canada. 

r.rrr and OpenFlock 

- David L. Sifry 



Gimp 1.2 & 2.0 

- Tuomas Kuosmanen 

GlobcMy Distributed Content 

- Horms (Simon Herman) 



Electronic content made available over the Internet Is 

becoming increasingly important for providers and us- 
ers alike. To provide the best possible service to end 
users it is desirable for content to be network-wise as 
close to client hosts as possible. Static mirrors of sites 
are one means of distributing traffic between sites and 
i^iving users the opportiniity to connect to a site that 
will give them a good response.instead of users manu- 
ally selecting a mirror, it makes sense for the service 
provider to automatically direct clients to a site that 
will offer them good performance, that Is to have a 
load balancing algorithm in place. Once such algo 
rithm is to select clients based using BGP to select 
which site has the least cost path to a given client. 
This paper will examine the Implementation of SUCh 
an load balancing scheme. 

Hardware accelerated image blending, rendering, scal- 
ing, anti-aliased text rendering - a reality on your desk- 
top 

- liasterman (Carsten Haitzler) 

Quietly in the bowels of some CVS repository in a gal- 
axy far far away .some code has been brewing... Tlie 
results? Ant! aliased text in X with full hardware ac- 
celeration AND optimized software paths included, 
hardware accelerated image scaling and blending, to 

make stunning user interfaces on the Linu.x desktop a 
reality. This paper will cover what was needed to get 
this fiar. the pitfalls of working on such a project and 
the great benefits and how to take advantage of the 

work that has gone into this. 

How To Remotely Buiid and Manage a Unwc Solution 
(or How Open Smave Software Keeps Me From Drtvtr^ 

to the CoIjo at 3 AM) 

- Gregory J. Pryzby 

Linux is growing in popularity. Reason differ, but com- 
modity hardware and open source software (OSS) are 

two re.'isons. Roth drive the total cost of ownership 
( ICO) down. If I can manage the systems remotely and 
more efliciently, the TCO drops agaln.Using two OSS 
projects. VACM (http://vacm.sourc^oige.net/) and 
Systemlmager 

(http://systemimager.s( iiir( rforge.net/). I ran re- 
motely install, update, rebuild and power cycle sys- 
tems. Once the systems are initially installed, there is 
no requirement for physically access (he systems. All 
the changes and management required can be done 
over the internet, securely— even BIOS changes. 

Is 2D graphics the next killer app for Linux? 

- RaphLevlen 

The COmpdUng technical strengths of Linux and other 
free software systems in multitasking and networking 
have brought it considerable success in the area of 

VV^cb servers. In this presentation, I demonstrate that 
the similar technical strengths free software is gaining 
in 2D graphics, and argue that this area could be the 
next "killer app" for Linux. 

IA64 IJiULV 

- Stephane Eranlan 

The Unwe Device FUesystem 

- Richard Goodi 
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The Device File-System (devfs) provides a powerful 
new device management mechanism for Linux. Unlike 
other existing and proposed device management 
schemes, it is powerful, flexible, scalable and 
efQcient.lt is an alternative to conventional disc-based 
character and block special devices. Kernel device 
drivers can register devices by name rather than de- 
vice numbers, and these device entries will appear In 
the nie-system automatically. 

LAnwc Standard Base 
Christopher Yeoh 

I'll talk about the goals and reasons behind the devel- 
opment of the Linux Standard Base. The presentation 
will cover the current status of the specification, test 
suites and sample implementation(s). Also discussed 
will be a summary of the current compliance of the 
different distributions, and POSIX compliance of the 
latest kernels and gllbc versions. It will describe port- 
ing and development of the test suites on Linux as 
well as their use as a general regression testing tool 
for kernel development. 

Leases & Directory Notification 

- Matthew Wilcox 

This paper describes how the Linux kernel was ex- 
tended to supply Leases & Directory notifications to 
applications. Leases allow an application to be notified 
when a file is modified, allowing that application the 
opportunity to cache changes until such time as they 
must become visible to others. Directory notification 
allows an application to be notified when the contents 
of a directory change. 

Memtest: Finding holes in the VM system 

- Juan J. Quintela 

This paper describes tlie development of a test suite 
for the VM subsystem and several of the resulting pro- 
grams in detail. A proposal for dealing with the shown 
bottlenecks are made. This suite of programs is called 
memtest. The suite is composed of several programs 
that generate different kind of lO and memory loads, 
such as writing big files (mmap*), using a lot of shared 
memory (ipc*), programs that do a lot of memory 
allocations/ frees (misc*). This test suite is not usable 
for benchmarking, it is used to find bottlenecks. 

OpenH323 

- Craig Southeren 

Craig is the co-founder of the Openfont23 project, an 
Open Source project that has been in operation for 
over two years. The code is currently in use by major 
vendors such as Nortel £uid provides the only Open 
Source H.323 protocol implementation 
available.H.323 is the protocol used for video and 
voice conferencing by programs such as NetMeetlng. 
We can, and have, been using Linux as our primary 
developmnent platform and have been making voice 
and video calls over the planet via the Internet for over 
a year. 

Perl 6 
Klrrily Skud" Robert 
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In July 2000, at The Perl Conference 4.0, Lany Wall 
announced that development would begin on Perl 6. 
The primary Intention was to improve the internal 
code of the Perl Interpreter and make it easier to ex- 
tend and improve. At the same time, the Perl develop- 
ment process would be restructured to (hopefully) en- 
courage more Input from the Perl community and to 
otherwise improve the way in which Perl itself was 
developed.This presentation reviews the first few 
months of Perl 6 development. Including the changes 
to the Perl community and development process, the 
Perl RFCs submitted as part of the pre-deslgn brain- 
storming, the current state of Perl 6's design, and the 
future of the project and of Perl itself. Klrrily "Skud" 
Robert is the chair of the Perl 6 language design work- 
ing group, and is actively Involved in the Perl com- 
munity. 

Porting device drivers to the Linux 2.4 kernel 

- Jonathan Corbet 

Rproxy 

- Meu-tin Pool 

Caches are used to good effect on today's web to Im- 
prove response times and reduce network usage. For 
any given resource, such as an HTML page or an im- 
age, the client remembers the last instance It re- 
trieved, and it may use it to satisfy future requests. 
However, the current-system is all-or nothing: the re- 
source must either be exactly the same as the cached 
instance, or it is downloaded from scratchA far better 
approach would be for the server to download a de- 
scription of the changes from the old Instance to the 
new one: a diff or delta', rproxy adds backwards - 
compatible extensions to HTTP that come Into opera- 
tion when two parties to a web request understand the 
'hsync' encoding, rproxy can be Inserted as a stand- 
alone proxy so that neither the server nor client need 
be changed. We plan to integrate the rproxy into 
popular web software including Squid and Mozilla In 
the near future. 

Rsync. TDB, Gzip and Apt-Proxy: A Hacker's Tale 

- Rusty Russell 

This meandering talk will discuss one humble coder's 
attempt to reduce bandwidth consumption of 
constantly-upgrading Debian users in the Linuxcare 
OzLabs ofllce. It will follow this hacker's journey from 
one quick hack (apt-proxy) to a more significant hack 
(gzip - rsyncable), climaxing in a series of modifica- 
tions to rsync Itseff, Including a minor tour into An- 
drew Tridgell's Tiny DataBase. It shows how a series of 
small, persistant hacks have the power to cheuige the 
world as we know it. Or not. 

Scratching An Itch, WUh and Wtthout Help 
-Hugh Blemings 

This paper examines open source projects with par- 
ticular reference to the different challenges that come 
from working with and without hardware vendor sup- 
port. To provide context a discussion of the "Scratch- 
ing An Itch" principle of open source development will 
be presented. The principle "without " case examined is 
gnokii. an open source project that provides tools and 
drivers for Nokla(TM) mobile phones under Linux, 
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BSD and other operating systems. The primary "with" 
case presented Is the process of writing Linux kernel 
drivers for the KeyspanflM) range of USB to serial 

adapters. 

Too Little. Too Slow: Linux 2.5 Memory Management 

- RIk van Rlel 

In Linux 2.5 virtual memory management will see 
some considerable chaises. One of the main problems 
with the current Linux memory manaj^ement is that 
sometimes we camiot make a proper distinction be- 
tween pages whidi are in use and pages which can be 
evicted from memory to make room bx new data-in or- 
der to improve that situation and make the VM sub- 

systi-iii more resilient against wUdly variable \'M 
loads, we wiii use ideas from various other operating 
^sterns to improve Unux memory managonent. The 
main page replacement routine will use the active, in- 
active and scavenge (cache) lists as found In FreeBSD. 
This mechanism maintains a balance between used 
and old memory pages so there will always be "proper" 
ps^s around to swap. In addition to this there will 
probably be things like dynamic and administrator 
settable RSS limits, anti hog code to prevent one user 
or process from hogging the machine and slowing 
down the rest of the machine and per-user memory 
accounting. 

Userspace: The Final Frontier, or "I-'ear and Loathing 
in sysdeps/hppa/" 

David IIug^ns-DainesSo. your port of Linux to a new 
arcliiteeture works. The kernel cross-compiles, links, 
and boots on your hardware. You've implemented sys- 
tem calls and memory management, and managed to 
boot it Into a shell prompt. You've ported Ethernet and 
SCSI flri\ers and built a few simple programs so you 
could test them. Wow! isn't that cool? So, what do you 
do next?This talk is about bootstrapping the GNU sys- 
tem on a new port of Linux. This includes a discussion 
of kernel support for userspace, interactions between 
GNU libc and the l-iernel. and. last but not least. ELF 
dynamic linking, it draws on my experiences boot- 
strapping Debian GNU/Llnux on the port of Unux to 
the PA-RISC architecture. 

YAMA (Yet Another Mod ArdvUecture) 

- Mlkol^ J. Habiyn 

Mikolaj presents YAMA (Yet Another Mail Architec 
tare), featuring 350k users, geographic redundancy, 
no license fees and a case stu^ in laige clustered li- 
nux systems running open source software doing real 
woricAlso touching on how to deploy and manage dis- 
tributed clusters counting hundreds of individual 
member servers without an operations or administra- 
tion team, and some of the trials and tribulations 
(mostly technical, some political) involved in getting 
such an alternative " system accepted. 



Work in Progress Presentations 

bewdy, Maaatel 
SIhia Pfeiffer 

MPEG Maaate is an audio analysis tooUcit for MPEG-- 
encoded audio files, bewdy is a graphical user 
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interface to play around with the analysis modules 
and results of the MPEG Maaate libraries. MPEG 
Maaate has has been published under the GNU GPL 
and can be found under 

http://www.cniIs.csiro.au/dmis/Maaate/.Wlth the 
vast amount of multimedia data online, content-based 
access to multimedia files becomes more and more in- 
teresting to users. One type of multinudia files widely 
used nowadays are MPEG-encoded audio files (MPEG- 
1 layers 1, 2. 3 (MPS)). MPEG Maaate supports the ex- 
traction ci structure and content of such audio files. 

CEGL: An Advanced, Flexible 2D-Imagtng Ubrary 
-Manlsh Singh 

In the field of digital imaging. Iliere are myriad ways to 
Store and represent image data. Many of the algo- 
rithms used for processing image data are the same, 
regardless of the data format. However, to efllciently 
and accurately process such data, the code should 
handle that data format natively. Creating and main- 
taining a libraiy of algorithms by hand for each format 
you want use is time consuming and error 
prone.Enter GEGL. GEGL defines a generic way of de- 
scribing an image processing algorithm, so you only 
write the code for it once. It will then autogenerate the 
code for the specific image format cases you want. To 
handle a new format, one just needs to write a back- 
end specification, instead of reimplementing all the al- 
gorithms by hand. The algorithm descriptions them- 
selves are simple and managable, but you get fast, op- 
tiinal rf)de aulogenerated. This is similar in vein to the 
approach GCC takes as a retargetable compiler. 

irc++ 

- Uam Quin 

Internet Kclay Chat (IRC) provides an international 
textual chat facility used by hundreds of thousands of 
people world wide. As IRC has grown, problems have 
become apparant both in the scalability of the imple- 
ineiilaiton and in the network protoci It uses.Tliis pa- 
per describes these problems in more detail and also 
introduces new software (irc^) intended to address 
these problems. The irc++ system is compatible with 
existing IRC clients, and also provides some 
MUSH/MUD/MOO-Uke fodllties. 

Outdoor Augmented ReaUty Wittfi WearabUe Computers 

Running Limtx 
Wayne Piekarski 

This paper describes In detail the research work being 
performed at the Wearable Computer Lab In the Uni- 
versity of South Australia. Our primary research work 
is being performed in tlie area of Augmented Reality 
[MQ. AR is the {Hooess of oveilaylng computia— 

generated graphics over the real visible world In real 
time, it is similar to current virtual reality (VR) tech- 
niques, except the displays used are transparent. Us- 
ing portable wearable computers, it is possible to 
build an AR system to take outdoors, allowing us to 
visualise structures that only exist in a computer, 
along with the real world, at the same time. 

State oj SparcUnux on h^h-end servers 

- Anton Blanchard 
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From Anton's submission: "We got SparcLlnnx to boot 
on a sun El Ok a few weeks at^o and 1 am looking into 
supporting such large machines better. This includes 
scaling better with large niimbers of cpus but also 
supporting hot swapping of cpus, RAM and 
devices. "Anton has now been poked for a more de- 
tailed summary. Thanks to all avid pokers out there, 
you may stop now. 

n.B Sharing In IA-64 Linux 
Alan Au. Gemot Heiser 

It Is well known that TLB miss handling and hence 
TLB coverage Is often a crucial bottleneck In overall 

operating system performance. This fact is becoming 
compounded by TLB sizes that have not scaled along 
with a trend towards increasingly larger memoiy sys- 
tems. The traditional approach to Increasing TLB cov 
erage is to use larger page sizes. However, this .solu- 
tion is non-general and, worse still, leads to possible 
adverse paging effects. Intel's newly released lA-64 ar- 
chitecture provides uniciue system features which al- 
low mcmon>' translation and protection to be done or- 
thogonally. By using this support and drawing on as- 
pects of single address space operating system (SA- 
SOS) technology, a novel memory managment scheme 
for improving TLB coverage in Linux is presented here. 



organisations also use It intemalty for their devdn^ 
ers, since, once setup correctly. It requires very little 
work on a day-to-day basis. 



Birds of a Feather SessicHis 

Debian 

Wchert Akkerman 

Documentation 
Malcolm Tredinnlck 

Security+ 
Peter Nixon 

Universal SerUiLBus 
Brad Hards 



Tutorial Sessions 

Bonobo. the GNOME component model 

- George Lebl. Macie| Stachowiak 

1 his will be a larger format tutorial Style wori^^shop on 
Bonobo. the GNOME component model. Both the 
theory behind Bonobo and CORBA and detailed ex- 
amples will be discussed. It is intended for people 
faimiar with GNOME programming wishing to use 
Bonobo in their applications. Here is an brldT outline 
of the workshop. Time for Q & A will be given at the 
end of each section. 

How to nmintain DNS, DHCP and. YP tables Jrom a 
tmiqiuehostJUe 

- Marc Merlin 



Introduction to using DcxAwfc for c^ipUcattan documen- 
tation 

- Malcolm Tredinnlck 

Learning to use the DocBook DTD, and derivatives 
thereof, presents a reasonabfy steep initial learning 

Cun'e. For many people who use DocBook for wTiting 
articles and books, the solution is often to read one of 
the many introductory tutorials available on the inter- 
net or to leverage some previous (op«i source) docu- 
ment and use it as a template. 

Using CVS 

- Malcolm Tredinnlck 

CVS is used throughout Open Source community as a 

means of providing up to the minute sources for users 
and coordination amongst developers. Many 
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Interfacing with Java 
from PHP 

Author: Bfird Faistad 



PHP4 ext/Java provides a simple and effective means 

for creating and invoking methods on Java objects 
from PHP. This article will give you a quick tutorial on 
how to use the PHP Java extension. 



42 •«• 4 ■ 46 

1001 - 42 = 959 
1024 * 4 = 4096 
1024 / 4 ^ 256 



Typ9 two numbers: 
Numlmr 1: 

1 ^ 



CateuAation method: Ni 



Calculate 



Scieenshoi of Java and PHP in action. 

As you probably know PHP lacks some object oricnteci 
functionality. It has the basics, but stulf like: virtual 
functions, destructors, function overloading and pri- 
\'atp functions/variables are missing. Still ['HP has 
many benefits, and it is a great language to use for 
website building. This article will demonstrate the 
ability PHP has to interface with a Java class, using 
the Java extension to PHP. 

So what is ext/Java? The README file that comes 
with ext/Java has the following definition: 

PHP4 ext/Java provides a simple and effective means 
for creating and invoking methods on Java objects 
from PHP. The JVM is created using JNl. and every- 
thing runs in-process. 

The Java extension is WTitten and maintained by Sam 
Ruby. I'or details about how to install ext/Java see the 
README file wlUch comes with PHP. The readme file 
is also listed in fiill at the last page of this tutorial. 

Java and PHP 

In this small tutorial I will show you how to make a 

simple calculator using a Java class to calculate the 
results and PHP to present the results and interface 
with the user. The example code can be tested here. 

We will first start with the calculator class. I've called 
the class eZCalc. The code is shown below: 



public class eZCalc 

float NumberA, NumberB; 



T 
} 
T 



•ublic eZCalc ( ) 



NumberA = 1; 
NumberB = 1; 



\ibllc void setA( float a ) 



NumberA = a; 



public void setB( float b ) 
^ NumberB » b; 



T 



lublic float multiply 0 



return NumberA * NumberB; 



ublic float divide () 

return NumberA / NumberB; 



T 
? 



lublic float addO 



return NumberA + NumberB; 



lUblic float subtract 0 

return NuniberA - NumberB; 



} 



The magic 

I've decidctl not to use templates in the .php file due to 
simplicity. If you want to know more about hOW to 
separate the html tags from the PHP code you can 
read the article about block templates here 

The contents of the PHP file is shown at the end of the 
article as a whole. Study this code and I will try to ex- 
plain the basic behavior of the code. 

First off 1 want to menlion the fact that you can in- 
stantiate Java classes and use them as PHP objects 
directly in the PHP code. The code snippet below 
shows how you can instantiate the eZCalc class into a 
PHP object called $calc. You can call member func- 
tions on Uie $calc object dlrecUy, as shown in the ex- 
ample. Note that you should manually set the type of 
the PHP variables sent as arguments to the Java ob- 
jects. This Is due to the large difference in types be- 
tween PHP and Java. The example below demon- 
strates how you set the values used for calculation In 
the Java object 



// create a new java object, $calc 
$calc = new Java( "eZCalc" ) ; 

// force the type to be con^atible with 
Java types 

8etType( $nuroberl, "double" ); 
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setType ( $number2, "double" ) ; 
$calc->setA( $numberl ); 
$calc->setB( $number2 ) ; 

Now lets see how the calculation works. First off we 
have four calculation types in our calculator; add, 
sub. mul and dlv. We switch on the different types and 
call up the $calc object with the correct calculation 
type, e.g. $result = $calc->subtract();. Here the Java 
object returns the value calculated inside the Java ob- 
ject. 

In this example I have only used simple types to com- 
municate between Java and PHP. You can also ex- 
change arrays between Java and PHP. Objects cannot 
be exchanged between PHP and Java. 

$operator = " " ; 

switch ( $calctype ) 

case ( "add" ) : 

Sresult = Scale- >add 0 ; 

$operator = "+"; 

break ,- 
case ( "sub" ) : 

$result = $calc- >subtract ( ) ; 

$operator = 

break; 
case ( "mul " ) : 

$result = $calc- >multiply ( ) ; 

$operator = •>•"; 

break; 
case ( "div" ) : 

Sresult = Scale- >divide () ; 

Soperator = "/"; 

break ; 

} 

Source listing 

The full source code for the example is listed below. 

<htnil> 
<head> 

<title>The fantastic Java calculator</title> 
</head> 



Sstack .= "Snumberl Soperator $number2 = 
$result<br > " ; 

print ( "<h2>$stack</h2>" ); 



<hl>Type two numbers : </hl> 
<form action="ezcalc .php" method="post " > 
<table bgcolor="#eeeeee" cellspacing="0" 
cellpadding="3" border="0"> 
<tr> 

<td> 

Number 1 : 
</td> 
<td> 

Calculation method: 
</td> 
<td> 

Number 2 : 

</td> 
</tr> 
<tr> 

<td> 

< input type="text" 

name = " numbe r 1 " > 

</td> 
<td> 

<select name= "calctype" > 
< opt ion 

values" add" >Add< /opt i on > 

<option 

value="sub" >Subtract</option> 

copt ion 

value= "mul " >Mult iply< /opt ion > 

<option 
value= "div" >Divide< /option> 

</select> 
c/td> 
<td> 

< input type="text" 

name= "number 2 " > 

• </td> 
</tr> 
</table> 

<input type= "Submit " value="Calculate"> 
<input type="hidden" value="<?php print ( 

Sstack ) ?>" name= "stack" > 
< /f orm> 
</body> 

</html> 



<body> 
<?php 



This article is re-printed with permission. The original 
can be found at www.zez.org 



$result = O; 

if( isset( $numberl ) && lsset( $number2 ) ) 



$calc = new Java( "eZCalc" ): 
setrypel $numberl, "double " ): 
setType( $number2. "double " ): 
$calc->setA( $numberl ); 
$calc->setB( $number2 ): 
$operator = " "; 
switch! $calctype ) 



case( "add"" ): 

$result = $calc->add(): 
$operator = '"+"; 
break: 

case ( "sub" ) : 

Sresult = Scale- >subtract 0 ; 



Soperator 

break ; 
case ( "mul " ) ; 

Sresult = 

Soperator 

break; 
case ( "div" ) : 

Sresult = 

Soperator 

break ; 



Scale- >multiply ( ) ; 



Scale- >divide ( ) ; 
= "/"; 



AUUGN Vol.21 • No.4 



-36- 



December 2000 



C0P;1 



Fun with Regular Ex 

pressions 

byAdiianJ.ainiig 
ajcliiing9eiiiaiI.coiii 



Many of the text processing GNU tools include a pow- 
erful pattern matching mechanism called Regular Ex- 
pressions. A more or less complete implementation Is 
supported by a utility called "egrep". Other text utili- 
ties such as "gawk" also support regex's. Some tools 
like 'sed ' and "grep" support an older less powerful 
regex syntax. Peri implements a regex variant that has 
proven so [popular that the same ^ntax is used In I^- 
thon regex's. 

For the rest of this article we'll be using the POSIX 
standard regular expressions as supported by "egrep". 

"egrep" is a tool that searches for substrings. The fol- 
lowing command will output the lines of the 

/etc/inittab file that contain the string "ini". Note that 
"irU" does not have to appear as a word by itself. 

$ egrep ini /etc/inittab 

We can search for digit strings also: 

$ egrep 321 /etc/termcap 

One may be interested only in the lines that start with 

the given target string. We use the special cliaracter 
which will match the beginning of a line. To search a 
dictionary for words that start with "rege": 

$ egrep *rege /usr/dict/words 

Similarly, special character $ can be used to match 
the end of a line. We can now answer the age old 
question ~ what words end in "giy"^ 

$ egrep 'gry$' /usr/dict/words 

The sin^e forward quotes are needed to prevent the 

command shell (bash in this case) from interpreting 
llie special characters before passing them to egrep. If 
you want to match any of these special characters so 
that they no longer have any special interpretation 
within egrep. precede them with a backslash: 

$ egrep ' \^Q' /etc/termcap 

This matches a two character substring of followed 
by "9". 

A single period matches any single character. To find 
all three letter words starting with "p" and ending with 

"n": 

$ egrep ''*p.n$' /usr/dict/words 

Note that this pattern matfdies both the start and end 
of the line in order to force an exact match rather than 
Just a substring, "egrep " has an option to enable this 
behavior so that the ^ and $ become uimecessaiy: 

$ egrep -x 'p.n' /usr/dict/words 



Sometimes the period is too general and one needs to 
match a more restricted range of characters. This 
command: 

$ egrep 't[aeiou]p$' /usr/dict/words 

outputs all words containhig "tap", "tep". "tip", "top", 
or "tup". Instead of enumerating all matdilng diaiac- 
ters. a range can be spedfled: 

$ egrep ' : (3-51 [0-9] :' /etc/termcap 

Date stamps i/rbsre the minutes field is In the latter 
half of the hour are extracted. Ranges also work with 

letters: 

$ egrep ' * [n-t] . [aeiou] $' 
/usr /di c t /words 

This finds all three letter words beginning with tlie let- 
ter 'n '. "o", "p" or "t". and ending with a vowdl. 

Ranges and enumeration may be mixed: 

$ egrep -x ' . [aeit-z] ' /usr/dict/words 

lists all two letter words ending in "a ", "e". "i", or any 
letter from "t ' througli to "z". If the leftmost cliaracter 
between the ll is a then the match is negated: 

$ egrep -ix ' [*n-t] [*aeiou] .' 
/usr /diet /words 

finds all three letter words begiiming in any character 

other than the letters "n" through "t", with a conso- 
nant for the second letter. The "-i" option makes the 
match case Insensithre. Words like "Sri" and "DEC" are 
omitted. 

riir ■\<' aiul '\>' combinations match the b^innlng 
and end of complete words respectively: 

$ egrep ' \< r' /etc/passwd 

matches lines that contain words beginning with "r". 

$ egrep 't\>' /etc/inittab 

matches lines witli words ending in 't". 

The * is a repetition operator. Any pattern that im- 
mediately precedes it, can match zero or more times: 

$ egrep 'ho*t$' /usr/dict/words 

matches word such as "fight", "hot", and "hoot". It will 
even match "hooooot" If It were in the dlctltxiary. 

$ egrep '*s.*ho*t$' /usr/dict/words 

shows the effect of * on special patterns like the single 
period. It is the equivalent of havbig zero or more pcrl- 
ods in the regular expression. Words like "siei{^t". 
"snapshot ", and "sharpshoot ' match. 

$ egrep -ix ' [^e] *e [^e] * ' 
/usr/dict/words 

finds all words that use exactly one "e" 



AUUGN Vol.21 • No.4 



-37- 



December 2000 



$ egrep -ix ' [a-ep]*' /usr/dict/words 

finds all words spelt using the letters "a","b". "c", "d". 
"e", and "p" only. Similary. + makes the preceding pat- 
tern match one or more times. Expression 'ot+o$' is 
equivalent to 'ott*o$". 

$ egrep '''s.*ho+t$' /usr/dict/words 

matches "shot" and "shoot" but not "sleight". 

$ egrep -i 'f.+f /usr/dict/words 

lists words that contain two non-adjacent f s. 

Here are some more repetition operators. List all three 
letter words: 

$ egrep -x '.{3}' /usr/dict/words 

All words at least 19 letters long: 

$ egrep -x '.{l9,}' /usr/dict/words 

And words between 1 1 and 14 letters in length, inclu 
sive: 

$ egrep -x '.{ll,14}' /usr/dict/words 

Find words with at least 4 consecutive vowels: 

$ egrep '|aeiuo]|4)' /usr/dict/words 

Find a word with six consecutive consonants, exclud- 
ing "y": 

$ egrep -i ■|'^aeiouyll6)' /usr/dict/words 

(People that frequent central London will know this.) 

The ? is equivalent to iO. U: 

$ egrep x 'po?l." /usr/dict/words 

matches "ply", "pole", "poll" and "polo", but not "pools". 

A I in the regular expression acts like a boolean OR: 

$ egrep -ix "p.nlb.+ghf /usr/dict/words 

outputs words matching either 'p.n' ("pin", "pan", etc) 
or b.+ghf ("brought", "blight", etc.) 

$ egrep -x ■b(ea I oo).' /usr/dict/words 

matches "bead" and also "book". Patterns Joined with 
I need not be tlie same length: 

$ egrep ■'^s(ha I o)p' /usr/dict/words 

matches both "shape" and "soprano". Note the use of 
rounded brackets to delimit the reach of the I opera- 
tor. Tlie ( ) can also define the scope of the repetition 
operators: 

$ egrep -i ' ( [aeiou] [*aeiou] ) {?} ' 
/usr/dict/words 
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lists words with 7 alternations of vowel and conso- 
nant. 

$ egrep -ix ' ["s] *s { [*s] +s) {2 , } [*s] * ' 
/usr/dict/words 

finds all words containbig at least 3 occurances of the 
letter "s". none of which are adjacent to each other. 

Parenthesis have another important use. Any text that 
matches the pattern enclosed in the () is stored tempo- 
rarily. TTiis text can then be referred to later in the 
same expression. In the following command the paren- 
thesis encloses a pattern matching any single vowel: 

$ egrep '( [aeiou] ) \1 ' /usr/dict/words 

The \1 now refers to whatever vowel that was 
matched, hence this regex matches words containing 
"aa". "ee", "ii", "oo", or "uu". When there is more than 
one pattern in parenthesis, the matched text is refer- 
enced by \1, \2. etc. 

$ egrep -x '(.){.)\2\1' /usr/dict/words 

matches words like "deed", "noon", etc. Each (.) 
matches a single letter, and the \2\l must match 
these same letters but in reverse order in which they 
previously appeared. 

$ egrep -ix '(.)(.)(•). *\3\2\1 ' 
/usr/dict/words 

lists words whose last three letters are the same as 
the first three letters reversed. 

A more complicated example: 

$ egrep ' " ( . ) .+\1\1.+\1$' 
/usr/dict/words 

Wliat does it do? It returns words like "enfeeble", "gag- 
ging", and "sicknesses". The parenthesized pattern 
matches the first letter in the word. Any matching text 
must also end in this letter, and must also contain 
this same letter doubled somewhere In the middle. 

Patterns within parenthesis can be of any length: 

$ egrep -i ' (.{5}).+\l' /usr/dict/words 

lists words that contain a subsequence of 5 letters 
more than once. 

And finally a really advanced example: 

$ egrep -ix '(.).* (\1 . + ). *\2' 
/usr/dict/words 

find words whose last few letters are also found, adja- 
cent and in the same order, somewhere In the middle 
of the word; the initial letter of this group also being 
identical to the first letter of the word. 

For more details see the "regex" info page. regex(7) 
man page (by typing "man 7 regex"). Also the "awk" 
and "egrep" documentation is worth checking out. 

TJiis article is re-printed with permission. The original 
can be found at: 
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Becoming More Ad- 
vanced in the Bash 
SheU 

AutborSamRowe 
deadman @deadinan.org 

If you've ever used GNU/LInux. chances are good that 
you've used bash. Some people hold the belief that us- 
ing a GUI is faster thaii using a CLI. These people 
have obviously never seen someone who uses a shell 
proflcientty. In this tutorial. I hope to show you Just a 
few of the amazing features bash provides that will in- 
crease your productivity in the shell. Bang Bang and 
hlstoiy 

EXreryone knows about bash history, right? You'd be 
surprised. Most modern distributions eome with l^ash 
history enabled and working. If you've never done so 
before, try using the up and down arrow keys to scroll 
through your command hlstor\'. The np arrow will 
cycle through your command liistoiy from newest to 
oklest. and the down arrow does, well, the opposite. 

As luck would have it. difTerent terminals handle ar- 
row keys differently, so liie brilliant minds behind 
bash came up with additional metliods for accessing 
and making use of the command history. Well start 
with history. This command simply gives you a num- 
bered list of the commands you've entered with the 
oldest command having the smallest number. Simple 
right? 

Here's an example of history output: 

190 ps -axu I grep htt 

191 /wvn*/bin/apachectl start 

192 vi /uor/local/lib/php.ini 

193 cat /www/logs/error_log 

194 ps -auxw I grep http 

195 pwd 

This brings us to bang-bang or f!. !! tells bash "fepeat 
the last command I entered." Bnt the magic doesn't 
stop there, if you order now, you'll also receive licyz. 
txyz will allow you to run the last command beginning 
with xyz that you typed. Be sure to add enough to the 
abbreviation to make it unique or you could run into 
problems, for instance: If you ran tm then tar xvzf 
mozllla.tar.gz and then tail ransom-note and typed !t 
you'd be looking at the ransom note again when you 
actually wanted to be reading news again. !tr is just 
enougli to be unique and give you a much better 
chance of hitting your targeted command. :p Isn't Just 
an emotlcon 

If you need to be very sure of the command you're tar- 
geting, :p can be a huge help. lxyz:p will print the 
command that would be executed rather than emcut- 
Ing it. :p is also clever enough to add the printed com- 
mand to your history list as the last command ex 
eciited (even though it ditln't execute it) so that, if you 
decide that you like what was printed, a !! is all you 
need to make it happen cap'n. 
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Bash provides a couple of methods for searching the 

command history. Both are useful in different sitiia 
tions. The Orst method is to simply type history, find 
the number of the command you want and then type 
IN where "N" is the number of the command you'd like 
to execute. (:p works here too.) The other method is a 
tad more complex but also adds flexibilty. ctrl r fol- 
lowed by whatever you type will search the command 
history for that string. The bonus here Is that you're 
able to edit the command line you've searched for be- 
fore you send it down the line. While the second 
method is more powerful, vrbea. doing some redundant 
task, it's much easier to remember 122 than it is to 
muck with ctrl-r type searches or even the arrow keys. 
Bang dollar sign !$ is the "end " of the previous com- 
mand. Consider the following example: We start by 
looking for a word in a file 

grep -i joe 

/some /long/ directory/structure/user- 

lists/list-15 

if Joe is in that userlist, we want to remove him from 
It. We can elttier fire up vl with that long directory tree 
as the argument, or as simpty as 

vi !$ 



A word of caution: !$ expands to the end word of the 
previous command. What's a word? The bash man 
page calls a word "A sequence of characters consid- 
ered as a single unit by the shell." If you haven't 
changed anything, chances are good that a word is a 
quoted string or a white-space delimited group of 
characters. -What is a white-space delimited group of 
characters ? It's a group of characters that are sepa- 

ratfd from other cliaracters by some form of white- 
space (wliich could be a tab, space, etc.) If you're in 
doubt, :p works here too. 

Another thing to keep in mind when using !$ is that if 
the previous command had no agruments, !.$ will ex- 
pand to the previous command rather tiian the most 
recent argument. This can be handy if. for example, 
you forget to type \1 and you just type the filename. A 
simple vi !$ and you're in. Circumflex hats 

Have you ever typed a command, hit return and a 
micro-second later realized that you made a tjrpo? 

Seems like I'm always typing mroe filenaine. Luckily, 
the folks who wrote bash weren't the greatest typists 
either. In bash, you can fix typos In ttie previous com- 
mand with a circumflex l^) or "hat." Consider the fol- 
lowing: 

vi /etc/XH/XF86config 

oops ! 

*6c*6C 



What happened there? The name of the Ole that I was 

trying to edit was /etc/Xl l/XF86Conng (note the 
capital "C") I typed a lower-case "c " and vl saw my er- 
ror as a re(iuest loi a new file. Once i closi'd out of vl I 
was able to tlx my mistake with the following formula: 
'^error'^correction. 
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Hats needn't be only used for errors... Let's say you 
have a few redundant commands that can't be 
handled with a wildcard, hats will work great for you. 
For example: 

dd if=kern.flp of=/dev/fdO 
"kern'mf sroot 

A few handy movement commands 

Sometimes a mistake is noticed before the enter key is 
pressed. We've already talked about terminals that 
don't translate cursor- keys properly, so how do you fix 
a mistake? To make matters worse, sometimes the 
backspace key gets mapped to '^H or even worse some- 
thing like '^(l-. Now how do you fix your mistake be- 
fore hitting the enter key? 

Once again, bash comes through for us. Here are 
some of the movement keystrokes that I use most of- 
ten: '^w erase word '^u erase from here to beginning of 
the line (I use this ALL the time.) '^a move the cursor 
to the beginning of the line '^e move the curor to the 
end of the line 

There are more of course, but those are the ones you 
simply can't live without. For those who don't know 
the '^N notation means ctrl+N. tab-tab 

One of my favorite features of bash is tab completion. 
Tab-completion works in a couple of ways, it can com- 
plete filenames in the current directory or in your 
$PATH. Like the Iconunands above, you just need to 
give bash enough of the filename to make it unique 
and hit the tab key -- bash will do the rest for you. 
Let's say you have a file In your home directory called 
ransom. note, consider the following: 

mor[tab] ran [tab] 

Will expand to 

more ransom. note 



Let's say you also have a file named random In your 
home directory, ran above is no longer enough to be 
unique, but you're in luck. If you hit tab twice, bash 
will print the list of matching files to the screen so 
that you can see what you need to add to make your 
shortcut unique. Aliases 

Using aliases is sort of like creating your own com- 
mands. You decide what you want to type and what 
happens when you type that. Aliases can live in a few 
of different places, -/.bashrc ~/.bash_proflle -/.profile 
and -/.aliases are some, but not all. In fact, you're not 
really limited to keeping them all in once place. Those 
different files behave dlfierently based upon what kind 
of shell you're running, but that's beyond the scope of 
this document. For the purposes of this discussion, 
we'll settle on -/.bash_proflle (used for login shells.) 

In that file, usually at the bottom, I assemble my 
aliases. Here's some examples: 

alias startx= ' startx 2>&1 | tee -/.Xlog &' 
alias ls='ls - -color=auto' 
alias mroe='more' 
alias H='kill -HUP' 



alias getxcvs='CVS_RSH=ssh; export CVS_RSH; cvs -d 
anoncvsoanoncvs .xf ree86 .org : /cvs checkout xc' 

The bottom one will probably wrap, but it provides a 
great example of why aliases are great. A whole string 
of commands has been reduced to something short 
and easy to remember. 

I hope this tutorial has been useful to you. The most 
difficult hurdle here is not the learning curve, but sim- 
ply becoming accustomed to using these built-ins. 
Just like learning vl. once you get good with these, 
you'll be amazed you ever lived without them. 

This is Just the tip of the bash Iceberg. If you enjoyed 
this, you might want to look around the Net for more 
bash information, or even buy a book! 

This article is re printed with perrr\issiorL The original 
can be found at www.deadman.org 
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Selling in the Bazaar : 

How Open Source 
Manages Code 

Author Niramiai Rikishi 

nlramial@myself.com 

The second in the series, this article discusses the 
various models of open source software development 
and the reasons why open source projects succeed. 

In the first part of this srrk s |1] wc looked at some of 
the background ttiat surrounds open source and soft- 
ware development. In this part, we wlD discuss and fo- 
cus on successful open source projects and tiy to un- 
derstand what makes tliem so successful. 

There are two well known open source development 
models. The first model, is one most famously followed 

by Linux |2] and in some sense Perl 13]. It is often 
known as the benevolent dictator (BD) model. In this 
model, a well known authority or established figure is 
the overall controller of the entire project. Overall de- 
sign and loiifi term decisions are taken by this person. 
All bug fixes, coding issues and implementation de- 
tails could be handled by associates or maintainers for 
the individual parts of the code. The name for this 
model stems from the fact that while the leader of the 
project chooses to remain neutral tuid evaluate pro 
posals on their merit, once in a way. a particular de- 
sign decision could be made by the dictator right 
against the code maintainers" choice. This privilege of 
puUint* rank in an open source project Is used rather 
infrequently. In the case of Linux, Linus Torvalds [4], 
guides the code and in many ways, the overall direc- 
tion that the Kernel takes (note the Kernel != Linux). 
In the meantime, he has been content to let compa- 
nies battle to position Linux in various positions, as 
they see fit. By b>eing neutral to the various niches, he 
can avoid seeming to lean towards any particular 
company or distribution. Larry Wall [5] has also per 
formed a similar role for Perl, although with recent 
versions of Perl notably Perl6 [6] this BD known as a 
language designer, albeit that term is used as wine 
would be in a different botde. This model is highly 
adaptable and mobile. In the truest sense of the word, 
tills model can allow developers to modify code quickly 
and easily to suit requirements. This model depends 
highly on the BD and his ability to foresee the even- 
tual direction of die project, manage design issues and 
if the need arises appfy bug fbxB and write quality 
code. 

The other model is the one adopted in various degrees 
by OpenOflice. Apache. Mozilla, Debian [7] and the 
•USD teams. In this scheme, there is no clear figure- 
head leader or controller. A team of various people in- 
volved in the project by their contributions, their skill 
and management abilities become co ordinators. In a 
common scenario, it would imply that a core group of 
programmers actually are allowed to make design 
changes and set goals. A set of people at a lower level 
are allowed to commit code into the CVS (Concurrent 
Versioning System) Repository that is maintained for 
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the code. Thus, bug fixes, security Issues and other 
low level details can be maintained at a different level 
wtilis the core group can concentrate on more impor- 
tant Issues. In ttie case of each of die examples, a core 
group exists which is usually composed of members of 
the community that are well respected. From time to 
time, the groups may recompose themselves (81 and 
add or delete members. I'rom the evidence of the BSD 
lineage [9]. this model is prone to forking. A fork in an 
open source project occurs when key members are un- 
able to agree on critical design or implementation Is- 
sues. Such members are then free to stop working 
with the current setup, and start on a new system al- 
together, using the current setup as a starting point. 
Forking, whUe seemingly negative and dangerous [101. 
actually leads to better focus and from the evidence 
that is present [11 J. better code and better software. 
This model is scalable and less prone to Individual id- 
iosyncrasies. Decisions on controversial issues are 
mostly resolved by voting of some sort and thereby a 
fairer picture usually results. This scheme also allows 
for a much larger volunteer group to exist as the levels 
at which people interact are much clearly structured, 
leading it to be easier to manage. 

In both the models, some common elements exist. A 

program is developed in two clear phases. The first 
stage is when the code is considered "experimental", 
"bleeding edge" or alpha. At this point, various fea- 
tures that are being considered are publicly debated 
upon and argued passionately till some form of agree- 
ment is reached. These discussions usually occur over 
mailing lists in which llie eventual users and develop- 
ers are present. Once features are fixed, various devel- 
opers across the world could either in isolation or as 
part of a team write code that satisfies the require- 
ments [12]. This code is then downloaded, compiled, 
testing and someUmes even deployed by users, volun- 
teers and developers worldwide. These development 
versions are often updated on a frequent basis and are 
usually distinguishable by a particular versioning or 
naming scheme. After sufficient testing and bug fixes 
are in place, the code is deemed to be a stable or re- 
lease version. This is usually given a different version 
number. This version also has fewer updates and of- 
ten the recommended version lor average users to ob- 
tain. This phenomenon is most noted in the Linux dis- 
tribution Debian which maintains a highly stable and 
relatively old setup for users while maintaining a 
highly upto date and bleeding edge version for devel- 
opers to test. Most users in the open source world. 
\(4ien not unduly concerned about stability rarefy ever 
install stable versions and prefer to be as bleeding 
edge as possible. 

The essential reason why open source works lies in 
the manner in which the eventual users of the project 
guide the progress of the project right from the start. 
By being active parts of the process, they facilitate 
early prototyping and proof by demonstration about 
what is possible and what is not. Code is released 
earfy and released often. The source code being freely 
aecessible allows more developers to examine the code 
and suggest potential improvements, bug fixes and 
other constructive criticism that can improve the code. 
Open source projects are often the clearest example of 
a meritocracy where you are often Judged by the merit 
of your code and your suggestions. In that sense, as 
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you argue either for or against some code, there is a 
large amount of ego gratification that can be achieved 
while still being constructive. In the words of Gerald 
Weinberg |13J, this critical element is best termed as 
egoless programming. 

Another vital and perhaps underplayed element of the 
open source model is that a large amount of chaos 
pervades the entire architecture. Rigidity and formal- 
ism arc rarefy any part of an open source project. 
From elementary chaos theory and evolutionary bkA- 
ogy. we know that the most adapti\'e, dynamic and 
successful systems operate at (he edge of chaos. Too 
much rigidity and the system dies as it cannot evolve. 
Too much chaos and the system is destroyed. The bal- 
ance is what open source projects seemingly achieve 
the balance and operate at maximum efllciency. Con- 
sider this: from the depths of chaos theory and the ri- 
gidity of formal complex mathematics arise the strik- 
ing beautiful and amazing fractals [14] that like 
open source will remain a marvel of this iioformation 
age. 
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Version Control man- 
agement with CVS - 
Part 1 & 2 

Audior Jan Booodl 

CVS is a Version Control System wtdch helps multiple 

developers manage software projects. I'll not discuss 
whether or not CVS is the best choice over other free 
and commercial Version Control Systems, 1 11 instead 
show how CVS Is used and give some small tips. This 
first part deals with setting up CVS loca%. checking 
out a project and getting updates. 

Setup Before you start using CVS you'd better setup a 
couple of environment variables. All examples uses 
bash syntax. 
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First the CVS root needs to be set. this tells the CVS 
program were to look for projects unless another root 
is set explicitly. The CVSROOT variable consists of 

four items: 

1. The protocol type, this can either be the use of ps- 
erver, remote shell «cecution (RSH and SSH) or lo- 
cally. 

2. The user name wliich lias CVS access. 

3. The server on which the repository resides. 

4. Hie path on the server to the repository. 

For instance using pservw. irtUch iS often used in lo- 
cal LANs, you could do 

e^qport 

CVSROOT" : pserver : useraserver : /path/to/cvsroot 

where user is your user on the remote server, servo: is 
the remote server and the /path/to/cvsroot is the 

path on the remote server. 

You can also have the repository on your local ma- 
chine in which case you write 

export CVSROOT= : local : /path/to/cvsroot 

where /path/to/cvsroot is the same as the one above 
but now locally. If you want to you can skip the :local: 

pren.x since it is only needed on the MS-Windows plat- 
form where tlie path often contains a :. 

The last and most used mode on the Internet is by us- 
ing so called remote shell execution, this is done with 

either RSI I (very in.serure and not recoinniendeci) or 
with SSH. Before you use this you need to set euiother 
shell variable, namely CVS_RSH. To use SSH you 
would write 

export CVS_RSHBSsh 

you would then change the CVSROOT to 

export CVSR00T>user«8erver: /path/to/cvsroot 

where the user, server and /path/to/cvsroot Is ecactty 
the same as In the pserver ecample above. 

One last thing you should do is to set the defoult edi- 
tor far committing changes. If this variable is not set 
CVS win use vl for editing, so unless you're a vl fanatic 

you probably want to change it to something more 
sensible for you. Good editors for this kind of use are 
pico. nano or nedit. You can also use Emacs for this 
but I would recommend using the emacsdloit, it 

saves a lot of loading time. 

So to change it to use pico you simpty perform this 
shell command: 

export CVSEDITOR=pico 

If you want these variables to be set each time you log 
in you can add them to your ~/.bashrc or 
--/.bash_proflle file. 

Lxjgging in If the repository you're working is using the 
pserver protol. you might want to login to it to avoid 
typing your password on every CVS action. However if 
you're veiy concerned with security you might want to 
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skip this, the reason is lliat when you login the pass- 
word Is stored, although encrypted, on your local ac- 
count in a file called .cvspass, but that's entirely up to 
you. 

Logging In is done with the CVS command login. What 
we're going to do is to try to log in to a remote reposi- 
tory with an aiiuii\ nions user, tliis gives us read-only 
access to the repository. To have something concrete 
to tiy it out on ill use own prefect on Sourcefoige 
as example. 

CVS - 

d:pserver : anonymousB)cvs . RegExplorer . sourcef orge . n- 
et : /cvsroot/RegBxplorer 

login You will then be prompted for a password. This 
is normally were you write in your password for the 
remote user, but in this case we simply press Enter or 
Return). We are now logged in to the remote repository 
and no longer need to pass a password for all CVS op- 
erations. 

Time to move on to the real commands. 

Checking out If you already have a project that you 
wish to "clieck out" there a couple ol simple steps to it: 

What you first need to figure out is where the reposi- 
tory is located, if It's In the same place as the CVS- 
RCXyr you set earlier you're set to j^o. if not you must 
supply a parameter to the CVS command. 

The next thing you need to decide Is which project you 
want to check out, this is either done with a path in 
the repository or with a CVS module name. 

Checking out Is done with the CVS command check- 
out 

CVS checkout module 
or the short version 

CVS CO module 

where the module is either the name of the defined 
module on the CVS server or the relative path to the 
project. 

To u.se another repository than the default you must 
specify this with (lie d option, this is called a global 
option and is always put before the CVS command. So 
if we wanted to check out the RegExplorer project we 
would do 

CVS -z3 - 

d : pserver : anonymousscvs . RegExplorer . sourceforge . n- 

et : /cvsroot/RegExplorer co regexplorer 

You sliould now get a local copy of the CVS project. 
You mlglit have noticed tlic use of the global -z3 op- 
tion. This simply tells the CVS program to use the gzip 
compression when sending data over the network, this 

helps the transfer speed wtit-ti using the Internet, tlie 
number 3 is the compression-level for the gzip pro- 
gram. 

The local copy will present In tlie subdirectory regex- 
plorer on your local machine, the module name is 



always used for creating a local subdirectory. You can 
now enter this directory, look around and make 
changes. 

Any changes you make to this project will not have 
any impact on the repository version, there are two 

reasons for this. 

The first reason is that you accessed the CVS server 
with an anonymous user which only gives you read- 
only access. To get write access you will need a user 
on the repository server and checkout the project with 
that user. 

The second reason Is that any changes by you on your 
local machine will not hv iiKorporated to the remote 
server before you do a commit. How to do a commit Is 
explained In a future part. 

Updating 

updating, one of two widely used CVS commands, is 
vital to any cvs project, it makes sure your local copy 
is up to date with the remote repositoiy. 

First lets picture a scenario: 

You successfully checked out the project and have 
used it successfully for a couple of days. You then get 
a message from your friend telling you that a new su- 
per cool feature has been conmiltted to tlie project. 
And of course you're interested In getting it. 

Well the solutton Is simple, what you need to do Is to 

perform a CVS action called updating, tliis is done 
with the CVS command update. To do the update you 
first need to change the current directory to wherever 
you have the project locally, then you do a 

cvs - z3 update 

or using the short form 

cvs -z3 up 

there Is no longer any need to specify tlie location of 
the repository this Is because when you checked out 
the project the location was stored locally. 

Wlien you execute the command you will notice that It 
lists a couple of files with some letters In front of 
them. The letter In front gives you a due on the status 
of the file. For instance 

U means the file was brought u]5 to date. 

P means the file has been patched with the repository 

version. 

A the file was added by you but not committed yet. 
R the file was removed by you but not committed yet. 
M the file has been modified by you but not committed 
yet. 

C the file has been committed by you locally and in 

the repository so a conflict has occurred, more Infor- 
mation on conflicts follows in the next part. 
? the file Is not part of the CVS project. 

One thing to notice when you update Is that you only 

get the changes in the files you already have locally. 
Any new files or directories will not be downloaded. To 
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make sure you get those too you have to add an up- 
date specific option -d. 

CVS -23 up -d 

The reason for not updating all files by default is that 
you sometimes den t want all files In a project and has 
expllcltfy checked out only a small portion of them, it 
can tiben be veiy annoying if the number ci ffles Just 
keeps increasing on eadi update. 

Another option, which can be useful, is to stop the 

CVS program from rccurslng trough subdirectories. 
Sometimes you just want to perform an action in the 
local dlrectoiy. To perform a non-recursive update you 
do 

CVS -z3 up -1 

which performs the update but otify in the current di- 
rectory. 

One other liaiidy trick you can do with the update 
conmiand is to get a simple status report on the re- 
pository. Sometimes you're just curious if the CVS re- 
pository has changed In any way but don't want to do 
an actual update to find out. To do this you have to 
specify the gloljal -ii option. This option tells the CVS 
program not to peribrm any changes to the local files. 
We can then do 

CVB -z3 -n up -d 

we then get the same list of files as we do with a nor- 
mal update but no files are changed. You can then 
easity pick out which files need patching, which ones 
are new and which ones are mnoved. 

Conclusion 

You should now have to knowledge to login, check out 
and update projects from a CVS repository. These are 
the only things you need to know tf you're only inter- 
ested in using other peoples projects. For Instance it 
allows you to download bleeding edge versions of your 
favorite programs, no need to wait for the next binary 
release. You can also help a developer find bug reports 
in the very latest v&e^sm. this Is much appreciated by 
most, if not aU. developers 

Part 2. 

Comitting 

Committing, the second of the two widely used CVS 
commands (the first is updating), takes care of send- 
ing an your local changes to the CVS reposttoiy. To be 
able to commit your changes you need write access to 
the CVS repository, so any anonymous logins won't 
work. 

Before I start explaining the commit command I'U tell 
you a little secret that will make your committed work 
so much more appreciated. The scenario is this. 

You're working on a project and have successful^ en- 
hanced it by adding your own super code localfy. 
YouVe tried out your personal changes several times 
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and everytlilng seems to work OK. Now you probably 
want to send these changes to the repo^toiy so you 

perform the commit command. However while you 
were busy creating your changes somebody else has 
done some other changes to the project which directly 
affects your work. If you were to commit you changes 
as it is now one of three things cotdd happen: 

1 . No conflicts or compile problems occur for other co- 
developers. 

2. No conflicts occur but the code will not compile 
with the latest CVS version. 

3. Conflicts occur because you and one or more C0~ 
developers have modified the same code lines as you. 

If number 3 happens you won't be able to commit be- 
cause you don't have the latest version, and you can- 
not commit a lower version over a newer version, this 
means you have to update your local CVS repositoiy. 
Number 1 is harmless since it works for all parts, but 
number 2 is something you want to avoid since it 
might break code. So how do you avoid number 2 you 
ask? 

As a rule of thumb you should always, and 1 mean al- 
ways, update before you do a commit. Why so? Well if 
you have the latest version locaUy and your new code 
still works, you can rest assure it will work for your 
co-developers as well(unless you consider conflicts). 

With that said I'U continue with explaining how to 
commit. 

Committing is done with the CVS command commit. 
You do this with: 



eve coninit 
or ^ort 

CVS com 

another short form 

CVS ci 

Rememtjer that you can use the global options you 
learned in part 1. for instance the -z3 might be useftil. 

When the command is run CVS will start looking 
trou^ your directories, starting in the current and re- 
cursing trough subdirectories, finding files which are 
modified locally. When this Is done CVS wiU ask you 
for a message regarding the changes you have made, 
tills Is done with the editor set in the CVSEDITOR 
variable (ttiis is explained in part 1), vhcn you save 
this message and quit the editor the changes wlfl be 
sent to the repository with the change message. 

if you want to at>ort the commit you can do this by 
quitting the editor without saving. 

However committing this way is not wliat will make 
you popular with your co-developers, this is because 
your change message will be appended to all modified 
files. For Instance your bug fix in one al tiie code files 
has no use being in the README file. This means that 

December 2000 



you should commit each tile separately (or at least 
^xnips ci files whlcli bdong together). To do this you 
supply the file(s) after the commit command, for in- 
stance: 

CVS commit README 

which will only commit changes for the i^EADME ille. 

Or using several files 

CVS commit qaxegexp.cpp qaregexp.bpp 

virtiLch will commit changes for both the C-m- body and 
header files (C++ bo^ and header files are clos^ re- 
lated). 

The message Itself can also be specified directly to the 
CVS program by using the -m option. For Instance 

CVS conunit -m "Changed the mail addresses to my 
new one" README 

The last word on committing is that you write sensible 
messages. Messages saying, fixes. stuiT or other mean- 
ingless sentences are useless, spend some time writ- 
ing the messages and inaltc sure you get all clianges 
in it. And remember the spellchecker is not your en- 
emy. 

Adding files 

Being able to do changes and committing them is now 
possible, but how do you add new files to the reposi- 
tory? Thanks to marvelous new technology this is pos- 
sible with a few simple steps. 

The conmiand for adding new files is add. For instance 
to add the installation file you do: 

CVS add INSTALL 

You can also add sub-directories, for instance if src is 

a suIj directory do: 

CVS add src 

But remember only the sub-directoiy will be added 
not the ccmtent, you need to add these yourself after- 
wards. 

If you have more ttian one file to add you can specify 

them all tn the command line, to add all .Cpp files, file 

FAy and tlie installation file do: 

CVS add *.cpp FAQ INSTALL 



Afijer the flle(s) are added you need to commit the 
changes, tfiis allows you to write an nice initial mes- 
sage explaining why you added it. 

There is one important thing you should know about 
files in the CVS repository, and that is that they never 
disappear (they never get smaller cither). It will disap- 
pear from the local copy and the local files may look 
smaller, but in the real CVS repositoiy all changes 
you. and your co-developers. have ever committed will 
be present. 



At first this miglit seem strange, but consider what 
would happen if you wanted an eariier version of the 

project and the files didn't exist anymore? Well it 
wouldn t work. Hial is why CVb keeps all information 
sent to It 

With this said you probably wonder how you remove 

files from CVS. As always you do tUs with a CVS com- 
mand and this time it's called remove. 

For instance to remove the installation file we added 

earlier do: 

CVS remove INSTALL 

But remember CVS will not remove the file in the re- 
pository unless it is removed locally flrst(it can be 
renamed/moved too if you want to keep it), Uie file WlU 
now be marked as removed. 

To perform the ronoval you have to do a commit (with 

a nice comment). The fUe will then be moved. In the 
repository, from the current directory to a sub- 
directory called Attic. All removed files will be put tn 
the AtUc. 

Creating patches 

The two previous pages explained how you can com- 
mit your changes and add llles to a CVS re|K)sitory if 
you have the proper write access. But what il you only 
have anonymous access and want the dianges you 
have made locally to appear in the CVS repositoiy? 

Luckily for you there is one option and that is to cre- 
ate a patch and send it to someone with write access. 
But don't count on the changes to appear at all. it's 

entirely up to each developer to use the patches sub- 
mitted by you. To help on this you should always send 
a detailed description on vibat you have changed and 
ask politefy. 

To create a patch you have to find out what the differ- 
ence between your local copy and the CVS repository 
is. This is done with the CVS command diff, ttie usual 
option to use for diff is -u whicli outputs the difference 
in a unified format. You can also use the -c option 
which uses the context output format So we want to 
do: 

CV8 diff -u 

After a while it will .start spitting out lots of text ex- 
plaining the differences, to put this into a file we use 
redlrecticni. 

CVS diff -u >my. patch 

This creates a file called my.patch wliich can be 
emailed to the developer, and hopefiilty Will be incor- 
porated into the CVS tree. 

Version niunliers 

You might have noticed when working with a CVS re- 
pository that each file has a given number For in 
stance It might have i.O. 1.2 or 1.8, the number is 
what's commonly called a revision number, which 
gives the user a due on how many times the file has 
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been modified. Files wbkh are frequently modified will 
have higli numbers, for Instance l.SO. 

Revision numbers are not be confused with program 

version. A program with version 1 .4.2 might have flies 
with varying revision numbers. 

A version number wUl always have an even number of 
period-separated decimal integers. So a revision num- 
ber of 1.3.2.2.4.5 is allowed. Revision 1.1 is by default 
the first version of a file. Wlien revision numbers have 
more than one period it is part of a branch, branches 
will be explained in a later part. Normally there's no 
reason to care about revision numbers as CVS will au- 
tomatically increase them internally lluwever some- 
times you might want to change the revision on all 
your flies when you have released major version of 
your softvvare. 

Note that using tags, which will be explained in a later 
part, is a much better way to handle releases. 

So if you wanted aU files to have a new revision num- 
ber you would use the commit command with an op- 
tion. For instance 

CVS commit -r 3.0 

will bring all your flies up to revision 3.0. Revision 
numbers can only be increased, so trying to set a revi- 
sion number of 1.3 when other flies have revision 1.5 
wlllfaU. 

Conclusion You sbouki now have the knowledge to 
perform changes to projects, whether good or bad. 
with the use of CVS. You should also know how to cre- 
ate patches in case you just have anonymous read ac 
cess. So why not help out your favorite Open Source 
project and make the world a better place. 

The next part in this series will go Into the details of 
CVS rei)ositt)r\- inanageiiieut. that is creating a new 
CVS repository, importing sources and handling CVS 
modules. For those of you who simply cannot wait 1 
recommend you either check out the man pages for 
CVS. read it's PostScrtpt version (usually located in 
/usr/doc/). the online manual or the PDF documoit. 

This article is re-prlnted wtOi permission. The wigtnal 
can be found at www.zez.org 
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AusCERT: Steps for 
Recovering from a 
UNIX or NT System 

Compromise 

Author: The AusCERT Team 
aiisceit9auscert.argjui 

This document Is being published jointly by the CERT 
Coordination Center and AusCERT (Australian Com- 
puter Emergency Response Team). It describes sug- 
gested steps for responding to a UNIX or NT system 
compromise. Your response siiould be carried out in 
several stages: 

Introduction 

Tills document sets out suggested steps for respond- 
ing to a UNIX or NT system compromise. 

Note that all actions taken during your recovery finom 

a system cotiiiiromise should be in accordance 'With 
your organization's policies and procedures. 

A Jlefore you get started 

1. Considt your security policy 

2. IJ yon do not have a security policy 

i. Comull with management 

Depending on how your organization is structured, it 

may be Important to notify management in order to fa- 
cilitate Internal coordination of your recovery effort. 
Also be aware that intrusions may get the attention of 
the media. 

ii. Consult with your Irgal counsel 

Before you get started in your recovery, your organiza- 
tion needs to decide if pursuing a legal mvestigation is 
an option. 

Note that the CERT Coordination Center and 
AusCEI^ (Austraii2ui Computer Emergency Response 
Team) are involved in providing technical assistance 
and facilitating communications in response to com- 
puter security incidents Involving hosts on the Inter- 
net. Wc do not have legal expertise and cannot offer 
legal advice or opinions. For legal advice, we recom- 
mend diat you consult with your legal ootmsel. Your 
legal counsel can provide you v\ith legal options (both 
dvil and criminal) and courses of action based on you 
or your oi^anization's needs. 

It Is up to you how you wish to pursue this incident. 

You tnay wish to secure your systems or to contact 

law enforcement to investigate the case. 

If you are interested in determining the identity of or 
pursuing action against the intruder, we suggest that 

you consult yoiir management and legal counsel to 
see if any local, state, or federal laws have been vio- 
lated. Based on that, you could then choose to contact 



a law enforcement agency and see if they wish to pur- 
sue an investigation. 

We encourage you to discuss the root compromise ac- 
tivity with your management and le^ counsel to an- 
swer the following questions: 

• What is your legal status in terms of your 
ability to trap intruders or trace connections 
(i.e., do you have a login banner stating that 

connections can be tracked or traced? See 
CERT Advisory CA-92:19 , "Keystroke Logging 
Banner"). 

• What are your legal responsibilities if your site 
is aware of the activity and does not take 
steps to prevent it? 

• Have any local, state, or federal laws been vio- 
lated? 

• Should an investigation be pursued? 

• Should you report the activity to local, state, 
or national) law enforcement? 

In general, if you are interested in pursuing any type 
of investigation or legal prosecution, we'd encourage 

you to first discuss the activity with your 
organization s management and legal counsel and to 
notify any appropriate law enforcement agencies (in 
accordance with any policies or guidelines at your 
site). 

Keep in mind that unless one of the parties involved 
contacts law enforcement, any efforts to trap or trace 
the Intruder may be to no avail. We suggest you con- 
tact law enforcement before attempting to set a trap or 
tracing an intruder. 

U.S. sites interested in an investi^tion can contact 

their local Federal Bureau of Investigation (FBI) field 
office. To find contact information for your local FBI 
field oflBce, please consult your local telephone dlrec- 
toiy or see the FBI's field offices web page available at: 

http: / /www.lbl.gov/contact/fo/fo.ht- 

m 

For more Information, please see the web page of the 
FBI Washington Field Office Infrastructure Protection 
and Compute: hitrusion Squad (WPO IPdS): 

You may wish to contact the U.S. Secret Service ftM- In- 
cidents involving the foUowing: 

• theft or abuse of credit card information (e.g., 
credit card fraud, the exchange of credit card 
inftmnatlon) 

• threats to the President of the United States 
(e.g., tlireatening email messages) 

• impersonation of the President of the United 
States (e.g.. the creation of forged email ap- 
pearing to come from the President) 
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To contact the Secret Service: 

Secret Service main phone number: 

+1 202 435-7700 

Financial Crimes Division - Electronic 
Crimes Section 

Phone: +1 202 435-5850 
Fax: +1 202 435 7607 

Non-U.S. sites may want to discuss the activity with 
their local law enforcement agency to determine the 
appropriate steps that should be taken With regard to 
pursuing an Investigation. 

To contact the Australian Federal Police: 

Ask for the Co-ordination 
centre 



Ask for the Co-ordination 

centre 

Ask for the Co-ordination 

centre 

Ask for llie Co-ordination 
centre 

Ask for the Co-ordination 
centre 



Canberra 


+61 


2 6256 7777 


Brisbane 


+61 


7 3222 1222 


Sydney 


+61 


2 9286 4000 


Melbourne 


-Kil 


3 9607 7777 


Adelaide 


+61 


8 8419 1811 


Perth 


+61 


8 9320 3444 


Darwin 


+61 


8 8981 1044 



iv.Notiry others within your (iruani/alion 



In addition to notifying management and legal counsel 
at your site, you may also need to notify others within 
your organization wlio may be directly aHected by your 
recovery process (e.g., other administrators or users). 

3. Document all of the steps ijou take in recoueriiig 

The importance of documenting every step you take in 
recovery can not be overstated. Recovering fhjm a sys- 
tem compromise can be a hectic and time-consuming 
process and hasty decisions are often made. Docu- 
menting the steps you take In recovery will lu lp pre- 
vent hasty decisions and give you a record of all the 
steps you took to recover, which you can reference In 
the future. Doc unicnting the steps you take in recov- 
ery also may be useful if there is a legal investigaUon. 

B.Regaiii control 

1 .Disconnect compromtsed sy$tem(s)jTtnn the network 

To regain control, you will need to disconnect all com- 
promised machines from your network inchiciiiig dial 
In connections. After that you may wish to operate in 
single user mode in UNIX or as the local admliiistrator 
in NT to ensure that you have complete control of the 
maciiine: however, by rebooting or changing to sin^e 
user/local administrator mode, you mi^ lose some 
useful information because all processes executing at 
the time of discovery will be killed. 

Therefore, you may wish to work tiirough steps in sec- 
tion C.5. Look for signs of a network sniffer to deter- 
mine if the compromised system Is currently running 
a network sniffer. 



Operating in single user mode on UNIX systems will 
prevent users. Intrudais. and intruder processes bom 

accessing or changing state on the compromised ma- 
chine while you are going through the recovery pro- 
cess. 

If you do not dlscoimect the compromised machine 

from the network, you nm the risk that the intruder 
may be coiuiected to your machine and may be undo- 
ing your steps as you try to recover the machine. 

2. Copy an imacic of the coinpwntised system(s) 

Before analyzing the intrusion we encourage you to 
create a bsKdcup of s^our system. This will provide a 
"snapshot" of the file system at the time that the root 
compromise was first discovered. You may need to re- 
fer bads, to this backup in the future. 

If you have an available disk which is the same size 
and model as the disk in the compromised system, 
you can use the dd command In UNIX to make an ex- 
act copy of the compromised ^tem. 

For example, on a Linux system with two SCSI disks, 
the following command would make an exact replica 
of the compromised system (/dev/sda) to the disk of 
the same size and model (/dev/sdb). 

# dd if-:/dev/sda of = /dev/sdb 

Please read the dd man page lor more information. 
There are many other ways to create a backup of your 
system. On NT systems there is no built in command 
like dd, but there are a number of tiiird party applica- 
tions that will make an image copy of an entire hard 
drive. 

Creating a low Ie\el loackup is important in case you 
ever need to restore tlie state of the compromised ma- 
chine when It was first discovered. Also, files may be 
needed for a legal investigation. Label, sign, and date 
the backup and keep the backup In a secure location 
to maintain integrity of the data. 

C. Analyze the intrusion 

With your system discoimected from the network, you 
can now thoroughly review tog files and configuration 
files for signs of intrusion. Intruder modifications, and 

configuration weaknesses. 

1. Look Jar modytcatlons made to system software and 
configwrationjflas 

Verify all system binaries and configuration files. 
When looking for modifications of system software and 
configuration files, keep in mind that any tool you are 
using on the compromised system to v^ify the integ- 
rity of binaries and configuration files could itself be 
modified. Also keep in mind that the kernel (operating 
system) Itself could be modified. Because of this, we 
encourage you to boot fix>m a trusted kernel and ob- 
tain a known clean copy of any tool you intend to use 
in analyzing the intrusion. On UNIX systems you can 
create a boot disk and make it write protected to ob- 
tain a trustworth kernel. 
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Copyrighted material 



We urge you to check all of your system binaries thor- 
oughly against distribution media. Wc have seen an 
extensive range of Trojan horse binaries that have 
been installed by intruders. 

Some of the binaries which are commonly replaced by 
Trojan horses on UNIX systems are: tolnct, in.tiinctd. 
login, su. ftp. Is, ps. netstat. ifconOg. find, du, df. libc, 
sync, inetd. and syslogd. Also check aiqr binaries ref- 
erenced in /ctc/inctd.conf, critical network and sys- 
tem programs, and shared object libraries. 

On NT systems. Trojan horses commonly introduce 
computer viruses or "remote administration" programs 
such as Back Orifue and NctBus. llierc ha\c been 
cases where the system file that handles internet con- 
nectivity ■vms replaced with a Trojan horse. 

Because some Trojan horse programs could have the 
same timestamps as the original binaries and give the 
correct sum values, we recommend you use cmp on 
UNIX ^sterns to make a direct comparison of the bi- 
naries and the original distribution media. 

Alternatively, you can check the MD5 results for either 

UNIX or NT on suspect binaries against a list of MDS 
checksums from known good binaries. Ask your ven 
dor if they make MD5 checksums available for their 
distribution binaries. 

Additionally, verify your connguration flies against 
copies tliat you know to be unchanged. 

When Inspecting your configuration files on UNIX ^s- 
tems. you may want to: 

• check your /etc/passwd file for entries that do 
not belong. 

• check to see if /etc/inetd.conf has been modi- 
fied. 

• If you allow the "r-commands" (riogln. rsh. 

rexec), ensure that there is nothing that does 
not belong in /etc/hosts.equiv or in any .rho- 
sts files. 

• check for new SUID and SCID nies. TIic fnl 
lowing command will print out all bUlU and 
SGID files within your filesystem. 

# £lnd / \ ( -perm -004000 -o -perm 
-002000 \) -type f -print 

When Inspecting NT systems, you nia\- u ant to 

• check for odd users or group memberships. 

• che<^ for changes to registry entries that start 
programs at logon or .serv'iccs. (sec LISTING 1) 

• check for unauthorized hidden shares with 
the 'net share' command or Server Manager 
tool. 

• clieck for processes that you do not identily 

using the pulist.exe tool firom the NT resource 
kit or the NT Task Manager. 

2. Look for iruMiificaaons to data 

Data on tomproBUsed systems Is often modified by in 
truders. We encourage you to verify the integrity of 
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web pages, ftp archives, files in users' home directo- 
ries, and any other data files on your system. 

3. Look for tools and data left behind by the intruder 

Intruders will commonly install custom-made tools for 
continued monitoring or for access to a compromised 
system. 

The conunon classes of files left bdiind by tntruders 
are 

• Netwoik Sniffera 

A network sniffer is a utility which will monitor and 
log network acti\aty to a file. Intruders commonly use 
network sniffers to capture usemame and password 
data that is passed in deartext over the network, (see 
section C.5 belowl 

Sniffers are more common on UNIX systems, but on 
NT systems check for key logging programs. 

• Trojan Horse Programs 

Trojan horse jjrograms are programs that appear to 
perform one function while actually performing a dif- 
ferent function, intruders use Trojan horse programs 
to hide their activity, capture usemame and password 
data, and create backdoors for future access to a com- 
promised system, (see section C.l above) 

• Backdoors 

Backdoor programs are designed to hide itself inside a 
target host. The backdoor allows the user that in- 
stalled It to access the system without using normal 
authorization or vulnerability exploitation. 

• Vulnenibtlity ^qdolts 

A majority of compromises are a result of machines 
riuining vulnerable versions of software. Intruders of- 
ten use tools to exploit known vulnerabilities and gain 
unauthorized access. These tools are often left bdiind 
on the system in "hidden" directories. 

• Other Intruder Tools 

The Intruder tools listed above are not Intoided to be 

a conclusive or comprehensive list. Tliere may be 
other tools left behind by an Intruder. Some of the 
other types of tools you may find are tools to 

•i^ probe systems lor vuiiierabiiities 
■Ct launch widespread probes of many other 
sites 

A launch denial of service attacks 
•Ck use your computing and netwoildng re- 
sources 

• Intruder Tool Output 

You may find log files fit)m any number of Intruder 

tools. These log files may contain information about 
other sites involved, vulnerabilities of your compro- 
mised machlne(s), and vulnerabilities at other ^tes. 
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We encourage you to search thorough^ for such tools 
and output files. Be sore to use a known clean copy of 
any tool that you use to search for intruder tools. 
When searching for Intruder tools on a compromised 

system 

• Look for unexpected ASCII filrs in the /dev di 
rectory on UNIX systems. Some of the Trojan 
binaries rely on configuration files which are 
often found in /dev. 

• Look very carefully for hidden Hies or directo- 
ries. If an intruder has created a new account 
and home dlrectoiy then there may be hidden 
files or directories. 

• Look for files or directories with strange 
names such as (three dots) or ".. " (two 
dots and some whltespace) (UNIX). Intruders 
often try and hide files within such directo- 
ries. On NT systems, look for files and directo- 
ries that closely match what may appear as a 
system file (EXPLORE.EXE. UMGR32.EXE. 
etc). 

4. Review logJUes 

Revlewintj your lo^ files will help you get a better idea 
of how your macliine was compromised, what hap- 
pened during the compromise, and what remote hosts 
accessed your machine. 

Kc(. |) in mind wlicn reviewing any log files from a com- 
promised macliine tliat any of tlie logs could have 
been modified by the Intruder. 

On UNIX systems, you may need to look in your 
/etc/syslog.coul (ile to find where syslog is lom^iiiL; 
messages. NT systems generalfy log everything to one 
of three logs for NT events, all of which are viewed 
through the Event Viewer. Other NT applications such 
as lis server may log to otiier locations. IIS by default 
writes logs to the c:\winnt\system32\logfiles direc- 
tory. 

Below is a list of some of the more common UNIX log 
file names, their function, and what to look for in 
those files. Depending on how your system is config- 
ured, you may or may not have the following log files. 



The messages log will contain a wide variety of infor- 
mation. Look for anomalies in this file. Anything out of 
the ordinary should be inspected. Also, look for events 
that occurred around the known time of the Intrusion. 

• zferlog 

if the compromised ^stem has a functioning ftp 
server, zferiog will contain log files for all of the ftp 

transfers. This may help you discover what intruder 
tools have been uploaded to your system, as well as 
vibat information has been downloaded .from your sys- 
tem. 

• utaap 

This file contains binary Information for eveiy user 
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currently logged in. This file is only useful to deter- 
mine vrho is currently logged in. One way to access 
this data is the who command. 

Every time a user successfully logs in. logs out. or 
your machine reboots, the wtmp file is modified. Tliis 
is a binary file; thus, you need to use a tool to obtain 
useful Information from this file. One such tool Is last 
The output from last will contain a table which as- 
sociates user names with login times and the host 
name where the connection originated. Cheddng this 
file for suspicious coDnectlons (e.g.. from unauthor- 
ized hosts) may be useful in determining other hosts 
that may have been involved and findlni* what ac- 
counts on your system may have t»een compromised. 

• secufe 

Some versions of UNIX (RedHat Unuz for example) log 
tcp wrapper messages to the seeme log file. E^rery 
time a connection Is established with one of the ser- 
vices running out of inittl tlial uses Ivp wrap|jers. a 
log message is appended to this log file. When looking 
through this log file, look for anomalies such as ser- 
vices that were accessed that are not commonly used, 
or for connections from unfamiliar hosts. 

The common item to look for when reviewing log files 
is anything that appears out of the ordlnaiy. 

5. Look Jor signs oj a network snijfer 

When a system compromise occurs, intruders could 
potentially install a network monitoring program on 
UNIX systems, commonly called a sniffer (or |)ack(.'t 
sniffer), to capture user account and password infor- 
mation. For NT ^sterns, remote adnUnlstration pro- 
grams would be more commonly used for the same 
purpose. 

The first step to take in determining if a sniffer is in- 
stalled on your system Is to see if any process cur- 
rently has any of your network Interfaces in |jromlscu- 
ous mode. If any interface is in promiscuous mode, 
then a sniffier could be Installed on your system. Note 
that detecting promiscuous interfaces will not be pos- 
sible If you havie rebooted your machine or are operat- 
ing in single user mode since your discoveiy.of this in- 
trusion. 

There are a couple of tools designed for this purpose. 

• cpm- UNIX 

available for download from: 

ftp://coast.cs.purdue.edu/pub/tools- 
/unlx/cpm/ 

• if status UNIX 

available for download from: 

ftp: //co ast . ( s . i3urdue.edu/Dub/tools- 
/unix/ifstatus/ 
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Keep in mind tliat some legitimate network monitors 
and protocol analyzers will set a network interface in 
promiscuous mode. Detecting an interface in promis- 
cuous mode does not necessarily mean that an 
intruda''s sniffer is running on a system. 

Another Issue to consider is that sniffer log files tend 
to grow quickly in size. You may want to use utilities 
such as ((f to determine if part of the illesystem is 
larger than «cpected. Remember that df Is often re- 
placed by a Trojan horse progrtun when snifTcrs are 
installed; tlierefore, be sure to obtain a known clean 
copy of that utility if you do use it. 

If you find that a packet sniffer has been Installed on 
your systems, we strongly urge you to examine tlie 
output file from the sniffer to determine what other 
machines are at risk. Machines at risk are those that 
appear in the destination field of a captured packet, 
but if passwords across systems are common or if tlie 
source and destination machines trust each other the 
source machine will also be at further risk. 

Many common sniffers will log each connection as fol- 
lows: 

-- TCP/IP LOG - TM: Tue Nov 15 15:12:29 — 
PATH: not_at_risk. domain. com(1567) => 
at_risk . domain . com (telnet ) 

I'or snifTcT logs of this jKirtitnlar format, you can ob- 
tain a list of affected maciiines by executing tlie fol- 
lowing command: 



% grep PATH: 
awk ' {print $4 } ' 
awk -F\ ( ' 



$snif f erlogf ile | 

\ 

print $l}' I sort -u 



You may need to adjust the command for your par- 
ticular case. Also, some sniffers encrypt their logs so 
they may not bo obvious. Because of this check for 

llles tliat grow quickfy. 

You should be aware that there may be other ma- 
chines at risk in addition to the ones that appear In 
the sniffer log. Tliis may be beciuise the intruder iias 
obtained previous sniller logs from your systems or 
through other attack methods. 

For more information, we encourage you to review 
CERT Advisoiy CA-94:01. available from: 

http://www.cert.org/advisories/CA- 
94.0 1 .ongoing.netwoik.monitoring.at- 

tacks.html 

The advisory describes of sniffer activity and suggests 
approaches for addressing this problem. 

Please send us a list of all hosts you know to be af 
fected. This will help us determine the scope of the 
problem. 

If Australian or New Zealand hosts have been in- 
vohred. please inform auscta^auacert.org.au. 

6. Check other systems on your network 

We encourage you to check all of your systems, not 
Just those that you Icnow to be compromised. In your 
check Include any systems associated with the com- 
promised ^stem through shared network-based 



services (such as NIS and NFS) or through any 
method of trust (such as ^stems in hosts.equtv or 
.rhosts files, or a Kerberos server). 

In examining other ^tems on your network, we en- 
courage you to use oiu* Intruder Detection Checklists: 

http://www.cei-t.org/ie( 1 1 l ips/lntru- 
der detection chccklist.iitmi 
http://www.auscert.org.au/lnforniati- 

on/Auscert info/Papers/wtn intrude- 
r detection checklist.html 

7. Check Jar systems involved or qffected at remote 
sites 

While examining log files, intruder output files, and 
any files modified or created during and since the time 
of the intrusion, look for Information that leads you to 
suspect that another site may be linked with the com- 
promise. We often Riul that other sites linked to a 
compromise (whether upstream or downstream of the 
compromise) have often themselves been victims of a 
compromise. Therefore it is important that any other 
potential victim sites are Identified and notified as 
soon as possible. 



D. Contact the relevant CSIRT and other sites 
involved 

1 . Incident Reporting 

Intruders will frequently use com|iromised accounts or 
hosts to launch attacks against other sites. If you find 
evidence of compromise or intruder activity at any 
other sites, we encourage you to contact those sites. 
Tell them what you have found, e.xplain that this may 
be a sign of compromise or intruder activity at their 
site, and suggest that th^ may wl^ to take steps to 
determine if/how the compromise occurred and pre- 
vent a recurrence. When contacting other sites, please 
:',i\e tticm as much detail as possible including 
date/timestamps. timezone. £uid what to do if they 
have follow-up information. 

We would appreciate a "cc" to cert@cert.org or 
auscert@auscert.org.au as appropriate on any cor- 
respondence. If you like, you can let the site know that 
you are working with us on this incident (please in- 
clude the assigned CERT or AusCEFTT tracking num- 
ber in the subject line of your messages). Also let them 
Icnow that we can offer assistance on how to recover 
from the compromise. 

2. Contact AasCEJ^T - Australian Com/Miter Emergency 

Response Team 

We would appreciate It to be informed of aity incblents 
involving Australian and New Zealand sites as it hdpa 
us to gauge the extent and nature of intruder activity. 

Our contact Information Is as follows: 

Internet: auscert@auscert.oru.au 
monitored during business hours 
(GMT+ 10:00) 

Telephone: +61 7 3365 4417 
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monitored during business hours 
(GMT+ 10:00) 

Hotline: +61 7 3365 4417 monitored 
24 hours, 7 days for emergencies 
(GMT+ 10:00) 
Facsimile: +61 7 3365 7031 

Australian Computer Emergency Response Team 

The University of Queensland 

Brisbane 

Qld 4072 

AUSTRALIA 

3. Contact the CERT Coordination Center 

We would appreciate it if you would complete and re- 
turn an Incident Reporting Form as this will help us 
better assist you, and allow us to relate ongoing in- 
truder activities. This also provides us a better over- 
view of trends in attack profiles and provides input for 
other CERT documents such as Advisories and Sum- 
maries. We prefer that Incident Reporting Forms are 
sent to us via email. The Incident Reporting Forms are 
available from: 

http://\\^w.cert.Qrg/ftp/incident re- 
porting form 

Our contact information is as follows: 

Email: cert@cert.org 

(monitored during business hours) 

Telephone: +1-412-268-7090 24-hour hotline 
Fax: +1-412-268-6989 

CERT Coordination Center personnel answer business 
days (Monday-Friday) 08:30 17:00 EST/EDT (GMT - 
5)/(GMT-4), on call for emergencies during other 
hours. 

CERT Coordination Center 
Software Engineering Institute 
Carnegie Mellon University 
Pittsburgh. PA USA 15213-3890 

4. Obtain contact information for other sites involved 

If you need contact information for a .COM. .EDU, 
.NET. or .ORG top-level domain, we encourage you to 
use the InterNlC's whois database. 

http://rs.internic.net/tools/whois.ht- 
ml 

To find contact Information from the appropriate reg- 
istrar, we encourage you to use the InterNlC's Regis- 
trar Directory: 

http:/ /rs. intemic.net/origin.html 

To find contact information for the Asla-paciflc region 
and Australia respectively: 

http: / /mvw. apnic.net/apnic 
bin/whois.pl 

http://ww\v.aunic.net/cgi- 
bin/whois.aunic 



To find contact information for other incident response 
teams, you may also want to check the contact list of 
the Forum of Incident Response and Security Teams 
(FIRST), available in: 

http://www.flrst.org/team-lnfo/ 

More information about finding site contacts is avail- 
able from: 

http://www.cert.org/tech tips/flndin- 
g site contacts.html 

We do not recommend sending email to "root" or "post- 
master" of a machine that is suspected of being In- 
volved in intruder activity. If that machine is the 
source of £m intruder attack, it is possible that that 
machine itself may be compromised and the intruder 
may have root access and /or be reading or intercept- 
ing email sent to that host. 

If you are still unsure of a site or contact details, 
please get in touch with us. 

E. Recover from the intrusion 

1 . Install a clean version of your operating system 

Keep in mind that if a machine is compromised, any- 
Uiing on that system could have been modified, in- 
cluding the kernel, binaries, dataflles, running pro- 
cesses, and memory. In general, the only way to trust 
that a machine is free from backdoors and intruder 
modifications Is to reinstall the operating system from 
the distribution media and install all of the security 
patches before connecting back to the network. Merely 
determining and fixing the vulnerability that was used 
to initially compromise this machine may not be 
enough. 

We encourage you to restore your system using known 
clean binaries. In order to put the machine into a 
known state, you should re-install the operating sys- 
tem using the original distribution media. 

2. Disable unnecessary services 

Configure your system to offer only the services that 
the system is intended to offer and no others. Check 
to ensure that there are no weaknesses in the configu- 
ration files for those services and that those services 
are available only to the intended set of other systems. 
In general, the most conservative policy is to start by 
disabling everything and only enabling services as 
they are needed. 

3. Install all vendor security patches 

We strongly encourage you to ensure that the full set 

of security patches for each of your systems is appUed. 

This is a major step in defending your systems from 

attack and its importance cannot be overstated. 

We encourage you to check with your vendor regularly 

for any updates or new patches that relate to your 

systems. 
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4. Consult AusCElRT advisories and external security 
bulletins 

We encourage you to consult past AusCERF advisories 
and external security bulletins and to follow the In- 
structions that are relevant to your particular conflgu- 
ration. Be sure tiiat you have Installed all applicable 
patches or workarounds described In the AusCERT 
publications. 

Remember to check the advisories periodically to en- 
sure tliat you have the most current information. 
Past AusCERT advisories are available from: 

http: / /www.auscert.org.au/Informati- 
on/Advisories/aus ad vtanriyy,h^m^ 
ftp: / /ftD.auscertoryAu/Dub/auscert- 
/advisory/ 

External Security Bulletins are available from: 
http: / /www.auscert.org.au/lnformati- 

on/Advisories/esb aclvisor ies.html 

ftp://ftp.auscert.or^.au/pub/auscert- 

/ESB/ 



5. Consult CERT advisories, summaries, tmd vendor- 
initiated bulletins 

We encourage you to consult past CERT advisories, 
summaries, and vendor-initiated bulletins and to fol- 
low the instructions that are relevant to your particu- 
lar configuration. Be sure tiiat you have Installed all 
applicable patches or workarounds described In the 
CERT publications. 

Remember to check the advisories periodically to en- 
sure that you have the most current information. 
Past CERT advisories are available from: 
htto:/ /www.cert.org/advlsorles/ 

Past CERT summaries are available from: 
http: / /www.oert.org/s nmitiarte« / 

Vendor-initiated bulletins are available from: 
ftp://ftp.cert.org/pub/cert bulletins/ 

6. CcaatanuseqfdataJix>mbackiq>s 

When restoring data from a backup, ensure that the 
backup itself is from an uncompromised maclilne. 
Keep in mind that you could re-Introduce a vulner- 
ability that would allow an intruder to gain unauthor- 
ized access. Also, If you are only restoring users' home 
directories and data flies, keep In mind that any of 
those files could contain Ttojan horse programs. You 
may want to pay dose attention to jiiosts files in us- 
ers' home directories. 

7. Omnge passuxxds 

After all security holes or configuration problems have 
been patched or corrected, we suf^,t>est that you 
change the passwords of ALL accounts on the affected 
8y8tem(s). Ensure that passwords for all accounts are 
not easy to guess. You may want to consider using 



vendor-supplied or third-party tools to enforce yoiu" 
password policies. 

AusCEKl^ has published the Choosing good passwords 
arttele which contains Information to educate users to 
choose good passwords. 

F. Improve the secniitj of your sys- 
tem and network 

1. Review security using the UNIX or NT Corifiguratlon 
Gukleibies document 

To help you assess the security of your system(s), 
please refer to our UNIX or NT Configuration Guide- 
lines documents. These documents may be usdlil 
when checkinj^ your system for common configuration 
problems that are often e;q>loited by intruders. 

httl3://u^^\'w.cert.orC/tech tIps/unix - 
conilguration guidclines.html 

ht tjii/y WA\av,nij^sceit '■ir(^.ati7'!nf()riTialij_ 
oii/Ausccri inro/l'apera/vvin conliuu- 
ration guideiines.htmi 

2. Review the securtty tools document 

Consider using some of the software security tools 
that are available, such as Tripwire®. COPS, and the 
TCP wrapper package. 

A description of some tools that can be used to help 
secure a system and deter break ins is available from: 

ht t [): //m\w.cert.or(^/tech tios/secur- 

ityjUJols^^ I It nil 

3. Install security tools 

Install all security tools before you connect your ma- 
chine back to the network. Also, this is a good time to 

take an MD5 checksum snapshot of the newty re- 
stored system using a tool such as Tripwire^. 

4. Enable maxtrntd logging 

Make sure tliat logging/aiKliting/accounting pro- 
grams are enabled (for example, process accounting) 
and that they are set to an appropriate levd (for ex- 
ample, sendmall logging should be level 9 or higher). 
Backup your logs and/or consider writing your logs to 
a dlflfetent machine, to an append-only ffle system, or 
to a secure logging host 

5. Coi^igureJIreuxJls to defend netuxxks 

Consider filtering certain TCP/IP services at your fire- 
wall server, router or at the hosts. For some sugges- 
tions, please r^r to "Packet Filtering for Firewall Sys- 
tems." available finom 

httD://www.certtM:^/tech tipa/oaclai- 
t nitering hhni 
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G. Reconnect to the Internet 



11 you disconnected from the Internet, the best time to 
reconnect is after you have completed all the steps 
listed above. 



1. Updalc your security policy 

The CERT Coordination Center reconmmids that ev- 
ery site develop their own computer security policy. 
Each organization may have a specialized culture and 
security requirements that are specific to their own or- 
ganization. Please refer to RFC 2196 "Site Security 
Handbook " for information about developing computer 
security policies and procedures for sites that have 
systems on the Internet. This document Is available 
from 

ftD://ftD.lsi.edu/in-notes/rfc2196.txt 

2. Document lessons learned from being compromised 

Document and review the lessons you learned from 

UoiiiLi IIiioul;!! (lie process of recovering from a com 
promise, lliis will help you decide exactly how to re- 
vise for your security policy. 



3. Calculate the cost of this incident 

For many organizations, changes simply are not made 
in security policy until they understand the cost of se- 
curity, or lack thereof. Calculating the cost of an inci- 
dent will help measure the importance of security for 
your organization. You may find that calculating the 
cost of this incident is useful for explaining to man- 
agement that security is important to your organiza- 
tion. 

4. Incorporate necessary changes ftf any) in your secu- 
rity policy 

MalUng changes to your security policy is the last step 
to take in this process. Be sure to inform members of 

your organization about the changes that have bem 
made and how that may affect them. 



Questions or comments regarding this article? 

ausc ert@ auscert. ora.au 

Disclaimer - copyright © 1 993-2000, auscert 

This article is re-printed unth permission. The original 
can be found at hBp:/Aww.auscert.ofq.au/ 
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Summrary of Minutes 
from AUUG Exec Meet- 
ing 

By: Liz Carroll 



5 August 2000 
10:00am -4:00pm 
UTS. Sydney NSW 



Notetakw: 


Elizabeth Canoll 


EC 




BizabethCanoli 


EC 




David Purdue 


DP 




LuigiCanloni 


LC 




Michael Paddon 


MP 




Malcolm Caldwel 


MC 




Peter Gray 


PG 




Alan Cowie 


AC 




Sarah Bolderoff 


SB 




Greg Lehey 


GL 


Gusst: 


Frank Crawford 


FC 


Apologies: 


David Newall 


DN 



NEW COMMITTEE 

Motion to co-opt Greg Lehey and Sarah Bolderoff onto committee. 
They were subsequently thanked for volunteering. 

PRESIDENT'S REPORT 

Some pnwedonl changes were discussed, before (he PiesideM's repon was given. 
Tbeve will be 4 meetings this year. All repons must be submitted one week prior to 
the meeliitg, with on archive of lepcns kepi. 

Proeedims will be codiiied diis year - HTML is the most logical way to do this and 

then store it on the AUUG website. 

AUUG2K 

We held a successful conference, although numbers were a little 

disappointing. 

Planning 

The main focus for this meeting Is planning for the next year. 

AUUG2001 is more than a year off, and while we cannot ignore it 
we will have to focus on other activities. In particular, we need to in- 
crease our membership, and we need to codify our procedures and 

get our corporate memory in order. 

SECRETARY S REPORT 

Current membership statistics (as at200<VD8A)3). 

* 664 members: 



Individual Member 


432 


65% 


Corporate Member 187 


28% 


Student Member 


21 


3% 


Freebies 


17 


3% 


Subscription 


5 




Ufa Member 


2 




NSW 


194 


29% 


VIC 


151 


22% 


ACT 


116 


17% 


QLO 


91 


14% 


WA 


44 


7% 


SA 


25 


4% 


OTHER 


19 


3% 


TAS 


17 


3% 


NT 


7 


1% 



Correspondance of note. 

Following an email complaining bitterly of our association with the 
ORBS anti spam service, discussion ensued on the exec list with di- 
vided opinion regarding the nature and merit of the ORBS service. 
MP's suggestion would be to use MAPs - in accordance to a re- 
sponse from Jeremy Bishop. 

WA Society for Computers and the Law, would lilte to form an aK- 
ance with AUUG. 

Directory of Australian Associations requires updated contact de- 
tails for AUUG. 
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DP requested MP to submit annual reports to the companies regis- 
ter in VIC. We need to have our details up to date with them. 

TREASURER'S REPORT 

The Treasurer presented the AUUG Budget for 1 July 2000-30 June 
2001 

AUUG is solvent 

A) Even if our meinbefsfilps were nl, we are advent for 
the year 

B) Monies required by 1st July 2001, as we Wil need 

funds for the AUUG 2001 conference 

Budget shows that we need the conference to happen, as the mem- 
bership alone does not sustain AUUG. 

BUSINESS MANAGER'S REPORT 

The past few weeks, since AUUG2K, had been spent with the gen- 
eral post conference dean up of issues, as wefl as ensuring that all 
the 30 June 2000 meinbershlp renewals were mailed out 
Accounts 

The majority of bills have been received from AUUG2K, just one or 
two small ones left, so most of this is up to date. 
All other accounts are up to date. 

AUUG2K 

Some outstanding payments are yet to come in, with invoices being 

mailed to those outstanding 
AUUG 2001 

Venues are currently being sourced. 
AUUGN 

Gunther Feuereisen stepping down as Editor. 
Systems Magazine 

An ailicte has been written for the August edition by Con Zymaris, 
basically a summary of the events at AUUG2K 

MINUTES OF PREVIOUS MEETING 

Last meeting in Canberra was not quorate, therefore notes have 

been produced, as opposed to minutes. 

AUUG2K 

FC stated that given the fact that there was short preparation time, 
and out of time frame, things went well. Some problems with 
speakers pulling out at short notice. Conference and tutorials went 
verywelL Negative skte was the stiortpreparatkm time. 

LC steted that (=Cs awailabiny at the front desk was excellent, as 
any prottoms were rectified almost immediately. In this respect, the 
Programme Chair shoukJ probably have an assistant 

PG stated that looking at the Evaluation Results, that Security iS SiH 

a very popular topic, and should always be included. 

Comnicnl wai made ilial Uica- was a tulorial that finished in about hall llic tinio thai it 
sbould have. At future events, we need lo look at using known presenters to try and 
ensure this does not happen. An idea would be to use a questionnaire on ai^tication, 
ie how naay mtoriab iMve you peaeiiieil, wheie eic VO wiU ptoduoe a Oiiide for 
1>M)n. 

Sunday was a good klea and worked well, with no complaints. 

Venue - DP was very pleased with this - the rooms were actually 
designed for presentatfons. All the correct sealing and equipment 
was there. 

Looking at the response to the venue, meeting rooms was good, 

meals and refreshments - not so good. 

Some mixed comments were received in regards to the venue, i.e. 
some delegates stated that it was too far from the aooommodatton. 

DP moved a vote of thanks to FC. 

EVENTS 

• AUUG 2001 

Received topics from the AUUG2K Evaluatfons, may be premalwe 

to use these right now. 

Most important thing is the date and venue. 

AUUG2001 will be run in Sydney 23-28 September 2001. 

• AOSS 
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Date to be held , Saturday 25 November 2000. Adelaide. 

• Security Symposium 

Idea this year is to present this on Friday 3 November 2000, 
followed by the Exec Meeting on Saturday 4 November. 

• Inctailfest 

GL stated that this was a very successful event. Their ex- 
pectation was 200, but they estimate they had about 500. 

• Other Events 

Two mure events should be held in the beginning half uf 
next year. 

Ideas: 



A) Unix Systems Administration 

B) Heterogeneous Networking 

C) High Level Scripting Languages 

D) eCommerce and WebServing 



MEMBERSHIPS AND RENEWALS 

Need to increase our membership numbers so that AUUQ is more 

self-sustaining, it is currently sustained by events, would like It sus- 
tained by membership, so that profit from events can be ploughed 
back into running bigger/better events and increase and improve 
membership benefits. We need to look at retaining members, as 
well as recruiting. 

As v^e increase membership, it increases botti iiii oine and expendi- 
ture. We need to look at our fixed and variable costs in relation to 
this. 

Looking at Itie budget, if we were to double our membership figures 
it would result in a very healthy organisation. 

AUUGN 

Discussed at the last AUUG Exec get together - suggestion pay- 
ment ol si^oo for appropriately refereed articles. 
Motion to pursue this action.Titie for this is the Reviewed Article 
Track. 
Editor 

Qunther will be standing down. 
NEW COMMITTEE 



PresMent: 


DavW Purdue 


DP 




Vice Presklent: 


Mak»lmCaklwell 


MC 




Treasurer 


Luigi Canton! 


LC 


Secretary: 


Michael Paddon 


MP 




General Committee Members: 


Peter Gray 
Aian Cowie 


PG 


AC 


DavklNewaN 


DN 


Sarah BoMeroff 


SB 


Greg Lehey 


GL 





EC to confinn (lie names of the Returning and Assistant l^eturning OfRer. 



OTHER BUSINESS 

John Uons account - monies to put Into a high interest fivKl. 

Meeting Closed: 5.10pm 

Next Meeting: 4 November 2000 
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Unix Traps and Tricks 

Jlttv WK'htcloo 
jerry ® vochteloo.org 



Welcome again to Unix Traps and Tricks. Keeping to 
the primer theme (and since I have not had time to do 
anything tricky In a vnbUe or recdved any other sub- 
missions), this quarters Installment Is on UNIX 
directoiy permissions. 



I know this Is the bad end of the year, but we have a 
new year coming up in which wc will all have more 
time :) so if anyone would be willing to write some- 
thing on any UNIX related topic that would be great 
Submissions to Jenydvo<diteloo.oig please. 



Short primer on UNIX directory permissions 



Last time I talked about permissions on Qles in UNIX, 
this time 1 will talk about what those permls^ons 
mean on directories. 

In UNIX a directory is a iile. The main difference be- 
tween flies and directories is that users cannot write 

to directories directly. All operations on directories are 
done by the operating system, .some indirectly, ie ere 
ating a file will add an entry to the directory, deleting 
a file will remove an entiy from the directoiy: and 
some more directly le mkdlr. and rmdlr. 

To understand liow permissions on a directory work 
we have to know what is in a directory: Simply a flle 
which contains a list of directory entries (dirents). 
Each directory entry contains: 

An inode number (file information data structure), and 
the name of the file. 

If we are searching for a lile. the operating systems 
will search for the nsimes In the directory, until it finds 
a match. Once a match is foiuid. the corresponding 
inode number is returned and we can start operating 
on the file (Note this is baslcalfy vrbat name! does). 

Now to what the permissions mean. First of all we will 

take read permissions. If you have read permissions 
on a directory you can list the contents of the direc- 
tory, ie the names of the files, and you can seeu-ch the 
directory, ie without read permissions you could not 
do an Is on the directory. 

unix> ndcdlr directory 
unix> touch directory/file 
unlx> Is -1 directory 

total 0 

-rw 1 jerry jerry 0 Nov 22 

09:51 file 

unix> chmod a-r directory/ 
unix> Is -Id directory 

d-wx 2 jerry Jerry 4096 Nov 22 

09:51 directory 
unix> Is directory 

/bin/Is: directory: Permission denied 
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Write permissions on a directory allow you to modify 
directory entries (through the operating system <^ 

course). This allows you to delete flies, create flies and 
rename files. This means that even if you have write 
permissions on the file itself, you cannot delete it from 
the directory if you do not have write permissions on 
the directory (Note that you can set the lengtti ot the 
file to zero, effectively deleting the contents of the file, 
but you cannot remove the flle itself) 



unix> chmod u-w directory/ 
unix> Is -Id directory/ 

dr-x 2 jerry jerry 4096 Nov 22 

09:56 directory? 
unix> Is -1 directoiry/ 
total 0 

-rw 1 jerry jerry 0 Nov 22 

09:56 file 

unix> rn directory/file 

rm: cannot unlink *dlrectory/file' : Permission de- 
nied 

Finally, the hardest permission to tinderstand (and to 
explain) is the execute permission on a directory. 1 ba- 
sically think of it as permission to access the inodes 
that are pointed to by dirents. Ibis means that. If the 
execute bit Is not set, no matter what permissions you 
have on tlie files theiiiseives. you f aitnot ofierate on 
the files. Further, without the execute permissions on 
a directoiy you cannot do an Is -1. as this would need 
to get the liiformation from the inode. 

unix> mkdir dirn 
unix> touch dirn/filel 
unix> touch dirn/file2 



unix> 1h -1 dim 
total 0 

-rw 1 jerry jerry 0 Nov 27 

10:58 filel 

-rw 1 jeirry jerry 0 Nov 27 



10:58 file2 
unix> chmod a-x dim 
unix> Is -1 dirn 

/bin/Is: dirn/filel: Permission denied 

/bin/Is: dljm/file2: Permission denied 

total 0 

unix> Is dim 

filel file2 

unlx> cat dirn/filel 

cat: dlm/filel: Permission denied 



Tricks 

As well as tlie three permissions read, write and ex- 
ecute, there are a couple of other permission bits that 
can be set on a directory; these are the set group Id 
(set gld) and thestlcl^blL 



First of aU. the set gld bit. indicates that all files that 

are created in that directory get the same group as the 
directoiy. not the group of the user. This is useful if 
you have sets of group woik projects. 



unix> mkdir tmp 
unix> la -Id tmp 

drwx 2 jerry jerry 4096 Nov 27 

09:00 tmp 

unix> chgrp arc tmp 
unix> Is -Id tmp 

drwx 2 jerry src 4096 Nov 27 

09:00 tmp 
unix> id 

uid=666 ( jerry) gid=i666 (jerry) 
unix> groups jerry 
jerry : jerry src 
unix> touch tmp/filel 
unix> Is -1 tmp/filel 
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-rw 1 jerry 

09:01 tnp/filel 
\mlx> dbmod 94-8 tmp 
unlx> Is -Id tmp 
ihnnt--S — 2 jerry 

09:01 tmp 

unix> touch tnip/£lle2 
unix> Is -1 tmp 
total 0 

-rw 1 jerry- 

OS: 01 filel 
-rw — 1 jerry 



src 



jerry 



src 



jerry 



4096 Nov 27 



0 nav 27 



0 Nov 27 



0 Nov 27 



'till next time. 



I hope that this has given some insight to UNIX direc- 
tory pennlssions. 



09:01 £ile2 



From the above you can see that once we set tlie set 
gid bit on the directory, the file that we create in that 

directory has the same a,roup as the directory, not as 

the user that created llic llle. 

The second extra bit on a directoiy is the sticlty bit. 
This is useful in world writable directories that lots of 

people are supposed to use (such as /Imp or 
/var/tmp). Normally il a directory is world vvriteable 
(and executable) any user can remove any files from 
that directoiy. With the sticky bit set: only the owner 
of the directory, the owner of the file, anyone with 
write permission on the lilc (and of course root), can 
delete the file. Hence users can create files in this di- 
rectory, without other being able to remove those files. 

unix> mkdlr test2 
unix> cbinod +t test2 
unix> Is -Id testZ 

drwx T 2 jerry jerry 4096 Nov 27 

16:17 test2 

Unix:- chmod afrwx test2 
Unix- Is Id Cest2 

dxwxrwxrwt 2 jerry jerry 4096 Nov 27 

16:17 teat2 

Finally, the applied tricks section: I'here is a hack that 
we can use give us a little (veiy little) security when we 
are sharing fUes. If we set permissions on a directoiy 

to rwx--x--x. we deny others the ability to list the di- 
rectory (with is or anything else), so there is 
no way tliat other users can find out the names of the 
nies in that directoiy. With the x bit set, however, if 
people know the name of the file they can access it 
(much like a pas.sword). This gives US rudimentary 
passwords for files. For example: 

unix> mkdir AUUGN 
unix> chmod 711 AUUGN 
unix> Is -Id AUUGN/ 

drwx X--X 2 jerry jerry 4096 Aug 9 

16:14 AUUGN/ 

uiiix> echo "hello" > AUOGN/adlkf jasdlfkjaedlf 
unlx> chmod 644 AtKJGN/adlkf jasdlfkjasdlt 
unix> Is -1 AUUGN 
total 0 

-rw-r — r — 1 jerry jerry 6 Aug 9 

16:14 AtnJGN/adlkf jasdlfkjasdlf 

unix> su otheruser 

unix$ Is AUUGN 

Is: AUD^: Permission denied 

unlx$ cat ADDQH/adlkfjasdlfkjasdlf 

hello 

This shows that only those people who know that the 
file is called adlkfjasdlfkjasdlf can actually show the 
contmts of the file. The only problems with this is 1) 
root can see all the files and 2) filenames can oflen be 
found from process information ie ps or even worse 
/proc if the file is mapped into the address space of a 
process. 



AUUGN Vol.21 . No.4 



-58- 



Uecembcr 2000 



Copyrighted matsrlal 



AUUG Chapter Meetings 
and Contact Details 



CITY 






BRISBANE 


Inn on the Park 
507 Coronation Drive 
Toowong 


For further infonnatlon, contact the QAUUG Ex- 
ecutive Committee via email (qauug— 
exec@auug.org.au). The techno-logically deprived 
can contact Rick Stevenson on (07) 5578-8933. 

To subscribe to the QAUUG announcements mail- 
ing list, please send an e-mail message to: 

<majordomo@auug.org.au> containing the mes- 
sage "subscribe qauug <e-mall address>" in the e- 
mail body. 


CANBERRA 


Australian National University 




HOBART 


University of Tasmania 




MELBOURNE 


Various. For updated information 

See: 

http://www.vic.auug.org.au/auu- 
gvic/av_meetlngs.html 


The meetings alternate between Technical presen- 
tations In the odd numbered months and purely 
social occasions in the even numbered months. 
Some attempt Is made to fit other AUUG activities 
into the schedule with minimum disruption. 


PERTH 


The Victoria league 
276 Onslow Road 
Shenton Park 


Meeting commences at 6. 15pm 


SYDNEY 







For up-to-date details on meetings, including those in all other Australian cities, please check the 
AUUG website at http://www.auug.org.au or call the AUUG office on 1-800-625655. 
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Call for Papers 



AUUG 2001 



Theme: "Always On and Everywhere* 



The AUUG Annual Conference will be held in Sydney, Aus- 
tralia, 26, 27 and 28 September 2001 . 

The Conference will be preceded by three days of tutorials, 
to be held on 23, 24 and 25 September 2001. 

The Programme Committee invites proposals for papers 
and tutorials relating to: 



Security in the Enterprise 

Applications made possible by Open Source 

Technical aspects of Computing. 

Networking in the Enterprise. 

Business Experience and Case Studies 

Open Source projects 

Business cases for Open Source 

Technical aspects of Unix, Linux, and BSD variants 

Open Systems or other operating systems 

Computer Security 

Performance Management and Measurement 
Networking, Internet (including the World Wide 
Web) 



Presentations may be given as tutorials, technical papers, or 
management studies. Technical papers are designed for 
those who need in-depth knowledge, whereas management 
studies present case studies of real-life experiences in the 
conference's fields of interest. 

A written paper, for inclusion in the confererKe proceedhigs 
must accompany all presentations. 

Speakers may select one of two presentation formats: 

Technical presentation: 

• A 25-minute talk, with 5 minutes for questions. 
Management presentation: 

• A 20-25 minute talk, with 5-10 minutes for 

questions (i.e. a total 30 minutes). 

Panel sessions will also be timetat)led in the conference and 
speakers shouM Indteate their willingness to participato, and 
may Ike to suggest panel topics. 

Tutorials, which may be of either a technical or management 
orientation, provide a more thorough presentatton, of either 
a half-day or full-day duration. 

Representing the largest Technical Computing event held in 
Australia, this conference offers an unparalleled opportunity 
to present your ideas and experiences to an audience with a 
ntajor Influence on the direction of Computing in Australia. 



Those proposing to submit papers should submit an ex- 
tended abstract (1-3 pages) and a brief biography, and 
clearly Indicate their preferred preserrtation format. 

Those submitting tutorial proposals should submit an outline 
of the tutorial and a brief biography, and clearly Indteate 
whether the tutorial is of half-day or full-day duration. 

Speaker Incentives 

Presenters of papers are afforded complimentary confer- 
ence registration. 

Tutorial presenters may select 25".. of the profit of their ses- 
sion OR complimentary conference registration. Past experi- 
ence suggests that a successful tutorial session of either 
duratkm can generate a reasonable return to the presenter. 

Please note that with the GST changes to tax legislation we 
will be requiring the presentation of a tax invoice (which we 
will assist in producing) containing an ABN for your pay- 
ment If that is not provided then tax will have to be witMieM 

from your payment. 



Important Dates 

Abstracts/Proposals Due 
Authors notified 
Rnal copy due 

Tutorials 
Conference 



- 13 July 2001 

- 27 July 2001 
-24 August 2001 

- 23-25 September 2001 

- 26-28 September 2001 



Proposals should be sent to: 

AUUG Inc. 

PO Box 366 
Kensington NSW 2033 
AUSTRALIA 

Email: auug2001prog@auug.org.au 
Phone: 1 800 625 655 or +61 2 8824 951 1 
Fax: +61 2 8824 9522 



Submission Guidelines: 
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